last executing test programs:

3m37.927447877s ago: executing program 2 (id=492):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010f00000000108117980800000000000109024100010000000009040000020308000009210000010122290a0905", @ANYRES16], 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x20200)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
ioctl$X86_IOC_RDMSR_REGS(r1, 0xc02063a0, &(0x7f0000000100)=[0x9feb, 0x10, 0x8, 0x5, 0x7ff, 0x800, 0x8, 0x7fffffff])
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002780)={0x28, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @fd}]}, @nested={0x4, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)

3m36.726048282s ago: executing program 2 (id=518):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000100)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100fffffffb00000000010000000c00050017000000"], 0x3c}}, 0x20000000)

3m36.723946759s ago: executing program 2 (id=519):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@bridge_delneigh={0x3c, 0x1c, 0xc07, 0x2000, 0x0, {0x2, 0x0, 0x0, r2, 0x8, 0x20}, [@NDA_DST_IPV6={0x14, 0x1, @empty}, @NDA_LLADDR={0xa, 0x2, @random="44328a67ad89"}]}, 0x3c}}, 0x20024090)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000240)={0x1, 0x0, [{0x4b564d00, 0x0, 0xfff}]})
ioctl$UFFDIO_WRITEPROTECT(r6, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}})
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x30, r3, 0x5, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]]}, 0x30}, 0x1, 0x0, 0x0, 0x90}, 0x4004084)

3m36.63458061s ago: executing program 2 (id=522):
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, &(0x7f0000000040)=0x3)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f000009f580), r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="030300000000000000000600000008000300", @ANYRES32=r3], 0x1c}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r1)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="ffff2abd7000f8dbdf25030000000800040000800000"], 0x1c}, 0x1, 0x0, 0x0, 0x4004c}, 0x20000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r5, &(0x7f0000000300)={0x0, 0x18, 0x0}, 0x0)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000080)=@usbdevfs_connect={0xff})

3m36.5158498s ago: executing program 2 (id=525):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b18094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
chmod(&(0x7f00000000c0)='./file1\x00', 0x112)
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000140)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x20)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0), 0x8017, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000000)=ANY=[@ANYRES32=r0], 0x4)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000040))

3m36.44518851s ago: executing program 2 (id=530):
r0 = socket$tipc(0x1e, 0x2, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23) (async)
r2 = memfd_create(&(0x7f0000000a40)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x06t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\x04n0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81\xbd\xd5\x00\x00C6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x17\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xc5\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe2\x0fT\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\xdf]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x0f\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\x9a{C|S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d\\&\x17o\x11Z=l\xfb\x93\x8exZ\x1c\xd11\xfc\xa7\x93E\xff\xff\xd0\xac\b\x01\x10\xcc\xcd\x9a0\xd83\xb6\r\xbb\xe1u_KUd3l\x862\xa8I\xa7\x8f\xfb\xed\xdbn\xbd\xbe\xf0+a\xc8JC\x03:&9\xae\xb8\xd8TdMf[\x1c\n#\x87\xfc\x81O`\x19P\x142~|\xdf\xbc\xaf\xe4^\xac\xa5\xfbyy\xcb\f\x14}g\xa7\xc2\xe1\xa9\xdf\xbf\xdbV\x94:\xa6I\xa9\x15\x0f', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8010002})
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x2000003, 0x97052, r2, 0x0)
sendmsg$tipc(r0, &(0x7f0000000780)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x2, {0x4, 0x2, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x84}, 0x8000)

3m21.422100459s ago: executing program 32 (id=530):
r0 = socket$tipc(0x1e, 0x2, 0x0) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23) (async)
r2 = memfd_create(&(0x7f0000000a40)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x06t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\x04n0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81\xbd\xd5\x00\x00C6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x17\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xc5\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe2\x0fT\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\xdf]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x0f\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\x9a{C|S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d\\&\x17o\x11Z=l\xfb\x93\x8exZ\x1c\xd11\xfc\xa7\x93E\xff\xff\xd0\xac\b\x01\x10\xcc\xcd\x9a0\xd83\xb6\r\xbb\xe1u_KUd3l\x862\xa8I\xa7\x8f\xfb\xed\xdbn\xbd\xbe\xf0+a\xc8JC\x03:&9\xae\xb8\xd8TdMf[\x1c\n#\x87\xfc\x81O`\x19P\x142~|\xdf\xbc\xaf\xe4^\xac\xa5\xfbyy\xcb\f\x14}g\xa7\xc2\xe1\xa9\xdf\xbf\xdbV\x94:\xa6I\xa9\x15\x0f', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8010002})
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x2000003, 0x97052, r2, 0x0)
sendmsg$tipc(r0, &(0x7f0000000780)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x2, {0x4, 0x2, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x84}, 0x8000)

2m57.743529048s ago: executing program 1 (id=913):
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f0000000240)={0x1})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

2m57.5500329s ago: executing program 1 (id=918):
r0 = userfaultfd(0x80801)
r1 = syz_open_dev$radio(&(0x7f0000000000), 0x0, 0x2)
ioctl$XFS_IOC_SWAPEXT(r0, 0xc0c0586d, &(0x7f00000000c0)={0x0, r0, r1, 0x200, 0x1, '\x00', {0x9e7f, 0x9, 0x7f, 0xaf9, 0xfffffffc, 0x40, 0xac0, 0x80000000, {0xffffffffffffff43, 0x3fff800}, {0xffffffffffff7fff, 0x6}, {0x9e, 0x2}, 0x2, 0x1ff, 0xf44, 0xe4, 0x6, 0x3, 0x0, 0x7f, 0xb9, 0x3, '\x00', 0x9, 0x4, 0x1, 0x7e}})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa, 0x498})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, 0x0)

2m56.645257427s ago: executing program 1 (id=921):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000ac0), 0x81, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r1, 0x5404)
ioctl$SNDCTL_TMR_STOP(r1, 0x5403)
sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x20, 0x1, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001080)="d8000000180001004e81f782db4cb904021d0800fe007c05e8fe55a10a0012000200142603600e12080005000000000001000000e00002400500fa7c035c0461c1d67f6f94007134cf6efb80009a38b540a6ea553e437a0ef0a007a290457f0189b3050000006bbace8017cbec4c2ee50150305870ca8aa7cef4090000001fb7d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf51951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd64fa1dba9bfe4edef3d93452a92954b43", 0xd8}], 0x1}, 0x24048800)

2m56.545543614s ago: executing program 1 (id=924):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
readv(r0, &(0x7f0000000680)=[{&(0x7f00000004c0)=""/188, 0xbc}, {&(0x7f0000000640)=""/15, 0xf}], 0x2)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340), 0x701)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000480)={0xfffffffffffffffe, 0x2, 0x1, 0x1, 0x800})
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000000)={0x3, 0x0, 0xfdfdffff, 0x0, 0xfffffff8})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x28280, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x25)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r4}, &(0x7f0000000840), &(0x7f0000000880)=r5}, 0x20)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r5, r7, 0x25, 0x2, @val=@netfilter={0x3, 0x1, 0x0, 0x1}}, 0x20)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x64, 0x0, 0x24, 0x2, 0x0, @private=0xa010101, @rand_addr=0x64010101}, @echo_reply={0x0, 0x0, 0x0, 0x68, 0x1044}}}}}, 0x0)
lsetxattr$security_capability(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0), &(0x7f0000000300)=@v1={0x1000000, [{0x5, 0x8}]}, 0xc, 0x1)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x5, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r10 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r10, &(0x7f0000000000)={0x23, 0x16, 0x4, 0x3}, 0x10)
ioctl$SIOCPNENABLEPIPE(r10, 0x89ed, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff2}, {}, {0xb, 0x6}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x3}]}]}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
mount$bind(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x3891, 0x0)
chroot(&(0x7f0000000580)='./file0/../file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000008c0)='./file0\x00', 0x0, 0x2a05004, 0x0)

2m55.541573677s ago: executing program 1 (id=932):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r3=>0x0})
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='update ecryptfs\x00'], 0x1a, 0xfffffffffffffffc)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r3, 0x0, 0x0, 0x0, <r4=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(r2, 0x3b89, &(0x7f0000000180)={0x28, 0x1, r4, r3, <r5=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_HWPT_ALLOC$TEST(r2, 0x3b89, &(0x7f0000000200)={0x28, 0x0, r4, r5, 0x0, 0x0, 0xdead, 0xfffffffffffffea5, &(0x7f0000000240)})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x4, 0x4, 0x4, 0x2, 0x0, 0x1, 0x8001}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f00000002c0), &(0x7f0000000300)=r1}, 0x20)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan3\x00', <r9=>0x0})
sendmsg$IEEE802154_SET_MACPARAMS(r7, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r8, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x40}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x6}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x1}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x6}, @IEEE802154_ATTR_TXPOWER={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000140)=0x8, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

2m55.275355492s ago: executing program 1 (id=933):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x5c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(0xffffffffffffffff, 0xc1004111, &(0x7f0000000240)={0x1, [0x86, 0xfffffffd, 0x101], [{0x5, 0x8, 0x0, 0x1, 0x0, 0x1}, {0x7, 0x2, 0x0, 0x1, 0x0, 0x1}, {0x6c, 0x100, 0x1, 0x1}, {0x8d7c, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x7, 0x7, 0x1, 0x0, 0x1, 0x1}, {0x2, 0x4, 0x0, 0x1, 0x1, 0x1}, {0x9, 0x77a1, 0x1, 0x1, 0x1}, {0x71e, 0x0, 0x1}, {0x5, 0x1ff, 0x1, 0x1, 0x0, 0x1}, {0x5e1c80e2, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x40, 0x7fffffff, 0x1, 0x0, 0x1, 0x1}, {0x3, 0x0, 0x0, 0x0, 0x1}], 0x4})
socket(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020692100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pwrite64(0xffffffffffffffff, &(0x7f00000002c0)="0000000000000006", 0x8, 0x9)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002dbd7000fddbdf2501000000090003007379"], 0x50}}, 0x4008004)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b95}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x4, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x0, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0xa, 0x81, 0x8a, 0x79, 0x2, 0x8, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x7fffffff, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x4, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x0, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0xc7c, 0x4, 0x0, 0xfffffff8, 0x4, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x1, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000000, 0x6, 0x438, 0x2, 0x9, 0x92, 0x7ffdffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x9, 0x8, 0x3fc, 0x4000006, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x4e, 0x9, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x2, 0x400, 0x3e55, 0x4005, 0xd3, 0x8, 0x97f7, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x6, 0x8922, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x5, 0x9, 0x6, 0x10000, 0xfffffffd, 0x5, 0x1], [0xa774, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x4, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0xc, 0x5, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x5, 0x3, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x1, 0x26d, 0x6, 0xffff7ff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x6, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x304})
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000280)={0x4000, 0x3000, 0x6, 0x0, 0x7f})
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x2, 0x0, 0x4}}, 0x2e)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r6 = dup(r5)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

2m55.15696585s ago: executing program 33 (id=933):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x5c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(0xffffffffffffffff, 0xc1004111, &(0x7f0000000240)={0x1, [0x86, 0xfffffffd, 0x101], [{0x5, 0x8, 0x0, 0x1, 0x0, 0x1}, {0x7, 0x2, 0x0, 0x1, 0x0, 0x1}, {0x6c, 0x100, 0x1, 0x1}, {0x8d7c, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x7, 0x7, 0x1, 0x0, 0x1, 0x1}, {0x2, 0x4, 0x0, 0x1, 0x1, 0x1}, {0x9, 0x77a1, 0x1, 0x1, 0x1}, {0x71e, 0x0, 0x1}, {0x5, 0x1ff, 0x1, 0x1, 0x0, 0x1}, {0x5e1c80e2, 0x4, 0x1, 0x1, 0x1, 0x1}, {0x40, 0x7fffffff, 0x1, 0x0, 0x1, 0x1}, {0x3, 0x0, 0x0, 0x0, 0x1}], 0x4})
socket(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020692100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pwrite64(0xffffffffffffffff, &(0x7f00000002c0)="0000000000000006", 0x8, 0x9)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002dbd7000fddbdf2501000000090003007379"], 0x50}}, 0x4008004)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b95}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x4, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x0, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0xa, 0x81, 0x8a, 0x79, 0x2, 0x8, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x7fffffff, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x4, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x0, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0xc7c, 0x4, 0x0, 0xfffffff8, 0x4, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x1, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000000, 0x6, 0x438, 0x2, 0x9, 0x92, 0x7ffdffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x9, 0x8, 0x3fc, 0x4000006, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x4e, 0x9, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x2, 0x400, 0x3e55, 0x4005, 0xd3, 0x8, 0x97f7, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x6, 0x8922, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x5, 0x9, 0x6, 0x10000, 0xfffffffd, 0x5, 0x1], [0xa774, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x4, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0xc, 0x5, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x5, 0x3, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x1, 0x26d, 0x6, 0xffff7ff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x6, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x304})
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000280)={0x4000, 0x3000, 0x6, 0x0, 0x7f})
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x2, 0x0, 0x4}}, 0x2e)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r6 = dup(r5)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

2m9.216781134s ago: executing program 4 (id=1300):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0xa0, 0x0, &(0x7f0000000300)="b44c806748f06309624431ed3373010001000000008c6390009c4ebd873094563683b7ee0fae7a6a53200386ce51def6a4effb9de8b4645c2b9c0614907dac12c6d34a8266e6124b925240080cd4f4e5b5da601596c31f137d2ce6ca74fd87f90ea0be786fe13ac0805807dd6853458eccc84575e9af5fee935d3bc54f9bdf5cf073b5a597a9df9cb422ce2ab5ff0700000000000093b110a54f32ad69d05a80", 0x0, 0x405, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r0 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x0)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85)
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x60, 0x0, 0x1, 0x0, 0x0, {0x39}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x73}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x60}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900"], 0x48}}, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$sock_int(r3, 0x1, 0x10, 0x0, &(0x7f0000000080))
r4 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r4, 0x114, 0x8, &(0x7f0000000380)=0x2, 0x4)
bind$rds(r4, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)
setsockopt$RDS_FREE_MR(r4, 0x114, 0x3, &(0x7f00000007c0), 0x10)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f00000000c0)={0x48, 0x2, r5, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$IOMMU_VFIO_IOAS$SET(r2, 0x3b88, &(0x7f0000000200)={0xc, r5})
ioctl$IOMMU_VFIO_CHECK_EXTENSION(r2, 0x3b65, 0x4)

2m9.141535319s ago: executing program 4 (id=1302):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000200)={0x50, 0x0, r1, {0x7, 0x1f, 0x9, 0xa020544, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
write$tcp_congestion(r2, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
dup2(r2, r0)

2m8.191631903s ago: executing program 4 (id=1316):
syz_emit_ethernet(0x3b6, &(0x7f0000002140)=ANY=[@ANYBLOB="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"], 0x0)

2m8.13175014s ago: executing program 4 (id=1319):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1e, 0x4, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140))
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x2, 0x81, 0x1fd, 0x1, 0x1}, 0x1c)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000140)=@req={0x8, 0x9, 0x6, 0x1000}, 0x10)
recvmsg$unix(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
close(0x4)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

2m7.133631129s ago: executing program 4 (id=1334):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37}, 0x28)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001011ff00000000000100070000000000010000ff0200000000000000000000000000014f194e20"], 0xfdef)

2m7.00474923s ago: executing program 4 (id=1336):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x200000, 0x346f, 0x9, 0xd0, 0x5, "9f940b3491d052d172e0e5732292c6de50806c"})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8)
r2 = accept(r1, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)="b304000000007d80", 0x8}], 0x1}], 0x1, 0x0)
recvmsg(r2, &(0x7f000000b680)={0x0, 0xffffffffffffffc3, &(0x7f000000b600)=[{&(0x7f000000b4c0)=""/5, 0x4}, {&(0x7f000000b500)=""/153, 0xfb59}], 0x2}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000340), 0x8401, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@aname={'aname', 0x3d, '\x9e\x01h\n\xcd\xf1\x833g\x91\xabP\x99\xf4V\xbaP\xa99\xa8N\t.\xf5\v\x97\xc5\xc4\xf4~\xe2\xa6^\\\x1a \x84\xc7*\xe3\xf2Y\xc6\xb8\xa0\xa4`&\a\x91/\x9dq\xb5\xc2S\xef\xcf\x12\x96+\xe8\xd0\xff\xff\x1d\xc6\x84\xcf\xcb\xabq\xcaF!3'}}], [{@subj_type={'subj_type', 0x3d, '#.$'}}, {@smackfsroot={'smackfsroot', 0x3d, '9p\x00'}}, {@obj_role={'obj_role', 0x3d, '{)}'}}, {@subj_type={'subj_type', 0x3d, 'TRACE\x00'}}]}})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x8, 0x3, 0x270, 0x128, 0x43, 0xa0, 0x128, 0x98, 0x1d8, 0x178, 0x178, 0x1d8, 0x178, 0x49, 0x0, {[{{@ip={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffff00, 0xffffffff, 'veth0_vlan\x00', 'bond0\x00', {0xff}, {}, 0x0, 0x2}, 0x12a, 0x108, 0x128, 0x0, {0x0, 0x7a010000}, [@common=@unspec=@rateest={{0x68}, {'macvlan1\x00', 'geneve1\x00', 0x32, 0x3, 0x1, 0x5, 0x4000000, 0x7, {0x3}, {0x1}}}, @common=@addrtype={{0x30}, {0x1}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x3, 0x1, "7a7d0d9452729a5afa3851200a44a3d28da04828d1768c081f126a6bc527"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2d0)

1m50.97141241s ago: executing program 34 (id=1336):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x200000, 0x346f, 0x9, 0xd0, 0x5, "9f940b3491d052d172e0e5732292c6de50806c"})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8)
r2 = accept(r1, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000200)="b304000000007d80", 0x8}], 0x1}], 0x1, 0x0)
recvmsg(r2, &(0x7f000000b680)={0x0, 0xffffffffffffffc3, &(0x7f000000b600)=[{&(0x7f000000b4c0)=""/5, 0x4}, {&(0x7f000000b500)=""/153, 0xfb59}], 0x2}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000340), 0x8401, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@aname={'aname', 0x3d, '\x9e\x01h\n\xcd\xf1\x833g\x91\xabP\x99\xf4V\xbaP\xa99\xa8N\t.\xf5\v\x97\xc5\xc4\xf4~\xe2\xa6^\\\x1a \x84\xc7*\xe3\xf2Y\xc6\xb8\xa0\xa4`&\a\x91/\x9dq\xb5\xc2S\xef\xcf\x12\x96+\xe8\xd0\xff\xff\x1d\xc6\x84\xcf\xcb\xabq\xcaF!3'}}], [{@subj_type={'subj_type', 0x3d, '#.$'}}, {@smackfsroot={'smackfsroot', 0x3d, '9p\x00'}}, {@obj_role={'obj_role', 0x3d, '{)}'}}, {@subj_type={'subj_type', 0x3d, 'TRACE\x00'}}]}})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x8, 0x3, 0x270, 0x128, 0x43, 0xa0, 0x128, 0x98, 0x1d8, 0x178, 0x178, 0x1d8, 0x178, 0x49, 0x0, {[{{@ip={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffff00, 0xffffffff, 'veth0_vlan\x00', 'bond0\x00', {0xff}, {}, 0x0, 0x2}, 0x12a, 0x108, 0x128, 0x0, {0x0, 0x7a010000}, [@common=@unspec=@rateest={{0x68}, {'macvlan1\x00', 'geneve1\x00', 0x32, 0x3, 0x1, 0x5, 0x4000000, 0x7, {0x3}, {0x1}}}, @common=@addrtype={{0x30}, {0x1}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x3, 0x1, "7a7d0d9452729a5afa3851200a44a3d28da04828d1768c081f126a6bc527"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2d0)

32.048176523s ago: executing program 6 (id=2364):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b0001006772657461700000", @ANYRES32, @ANYBLOB='\b\x00\r\x00\x00\x00\x00\x00\b\x00?'], 0x4c}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b0001006772657461700000", @ANYRES32, @ANYBLOB='\b\x00\r\x00\x00\x00\x00\x00\b\x00?'], 0x4c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$unix(r2, &(0x7f0000000240)=@abs, 0x10) (async)
bind$unix(r2, &(0x7f0000000240)=@abs, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@ipv6_delroute={0x1c, 0x19, 0x1, 0x70bd2a, 0x0, {0xa, 0x0, 0x0, 0x8, 0x0, 0x3, 0xc8, 0x6, 0x1000}}, 0x1c}}, 0x44)
getsockopt$bt_hci(r1, 0x0, 0x3, 0x0, &(0x7f0000000000))
r3 = open(&(0x7f0000000000)='./file0\x00', 0x88c040, 0x59)
fcntl$setlease(r3, 0x400, 0x1)
fcntl$setlease(r3, 0x400, 0x2)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000680)=ANY=[], 0x188}, 0x1, 0x0, 0x0, 0x84}, 0x404c094) (async)
sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000680)=ANY=[], 0x188}, 0x1, 0x0, 0x0, 0x84}, 0x404c094)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)

31.875679903s ago: executing program 6 (id=2365):
syz_emit_ethernet(0x4f, &(0x7f0000000a80)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6c370c8900198401fec00000000000000000020000000000fe8000000005000000000000000000aaa5ba94e385673ccfd3fe184ab0643975bcc85fbf438632261b"], 0x0)

31.875491273s ago: executing program 6 (id=2366):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000002100da4d8000000001000000028000000000090001000000b522a3dbd00f6caa9f1cb8cac0739fb97e5e15cb6df251b271033e64990d324938004da1779be5d5597b9106a1f71304cfc45fe175c23660a083b091e5865bfe46b68472"], 0x1c}}, 0x0) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x3c, r2, 0x1, 0x70bd30, 0x25dfdbfd, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x609e8a93f04c898d}}, {0xc, 0x1, 0x0, 0x1, {0x4}}, {}, {}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80c1}, 0x0)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x5, 0x5, 0x2, 0x3, 0x4, 0x0, 0xfffffff6, 0x8, 0x5}}}}]}, 0x58}}, 0x20040084) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
mount$afs(&(0x7f0000000340)=ANY=[@ANYBLOB="2373797a303a73797a302e72f745a8c8d6c80b6007ff9a93782a01ac20fdd2b82305c8ec000600"/52], &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1000000, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001b00)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="671d00000000fbdbdf2546e900000e0001006e657464657673696d000000050002006e657464657673854430000008008e00020000000c008f000100ffffffffffff0c009000f8ffffffffffffff"], 0x54}, 0x1, 0x0, 0x0, 0x4040010}, 0x4090) (async)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="bc1b0000400007012bbd700000000000017c00000400c2800c00018006000600843b0000971b0280540214"], 0x1bbc}, 0x1, 0x0, 0x0, 0x4048011}, 0x20008054) (async)
flock(r3, 0x2) (async)
unlink(0x0) (async)
symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00') (async)
mkdirat(r3, &(0x7f0000000080)='./file0\x00', 0x28c8428f51824e26)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f00000000c0))
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280))

31.791292584s ago: executing program 6 (id=2367):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x0, @none, 0x0, 0x2}, 0x5c) (async)
bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x0, @none, 0x0, 0x2}, 0x5c)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, 0x0, &(0x7f0000000100))
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) (async)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x2c, 0x40, 0x107, 0x70bd2b, 0x0, {0x1, 0x7c}, [@typed={0x5, 0xe, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x10, 0x0, 0x1, [@nested={0x4, 0x3}]}]}, @nested={0x4, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="c0000000020601020000000000000000000000000500010007000000680007f501a67e9c80080013400000000708000940000007ff050003000600000008000840000000301800028014000240ff0200000000000000000000000000010c000280080001407f000001060004404e200000050014000900000005001500280000000800064000000003100003006269746d61703a706f7274001c00078006000540000000000600044000000000050003000300000005000100070000000500040000000000"], 0xc0}}, 0x0) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="c0000000020601020000000000000000000000000500010007000000680007f501a67e9c80080013400000000708000940000007ff050003000600000008000840000000301800028014000240ff0200000000000000000000000000010c000280080001407f000001060004404e200000050014000900000005001500280000000800064000000003100003006269746d61703a706f7274001c00078006000540000000000600044000000000050003000300000005000100070000000500040000000000"], 0xc0}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x4c, 0x1, 0x2, 0x201, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x101}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0xee}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x80000000}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xfffffff7}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x8000)

31.716714531s ago: executing program 6 (id=2368):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0xe5c, 0x80000)
r3 = eventfd2(0x42000006, 0x801)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000240)={r2, 0x7, 0x2, r3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x7, 0x1, r2})

31.353306634s ago: executing program 6 (id=2370):
r0 = fsopen(&(0x7f0000000000)='ceph\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='ip\x00\x03cr\x80e\x83', &(0x7f0000000240)='.\x8bR\xafH\xd6e\x11\'\xec\xbb\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\x17\x02xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\x00\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^2\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8\xf7\x10\xe1R \x9a^\xdfq*L\xc4lP6\x8f\xff&>\x94\x882\x1c\x00\x00\xc5\xbdD(\xa5\x17\x11\xd6\t\x12\x7fe\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\b\xe1\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xc5\xa3_\xab\xf1\xf5\r\xb6\xe7\xfcS9\xd1.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf\xc2\xa4\xf9@T/\xf5\xd1t\xc7\xeb\x04y\rr\xba^\x9f\xf4\xfb\xaa#\xf6lX\'\x03u\xc6XZ\x8eK*Zs\xdb\xcaV\x92\x84\xc5\x05i]\xb6N\xa9&a\xe6\xa1\xedgd\xc2\x8b1Kq\x90U\xe0\x9a\xee\xd6BdU?\r\xd2\x13}u\xf6\x9entz\vW\x04\x968\xc5v\xe0t:\xe0D\xe8\xca\xb8\xd5\xb0\x89\x90\x928\x1d\r\x8b\xf2#8\xf5rI=6\xa1L\x19>I\f\xe7\xab\x98\xd2x\x82\x820\xf6\x8b]T\xd1\xe0\xefD\xc3\x94O\xdd\\\xd6\xb5z.\xc9z>\xdab\xcdw\xbf\x91\x190we\xa5\xfc\xf9\xaf\xedA&\xd50\xa9\xf0\xbeX\xe8\xd0', 0x500)

31.307592115s ago: executing program 35 (id=2370):
r0 = fsopen(&(0x7f0000000000)='ceph\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='ip\x00\x03cr\x80e\x83', &(0x7f0000000240)='.\x8bR\xafH\xd6e\x11\'\xec\xbb\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\x17\x02xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\x00\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^2\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8\xf7\x10\xe1R \x9a^\xdfq*L\xc4lP6\x8f\xff&>\x94\x882\x1c\x00\x00\xc5\xbdD(\xa5\x17\x11\xd6\t\x12\x7fe\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\b\xe1\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xc5\xa3_\xab\xf1\xf5\r\xb6\xe7\xfcS9\xd1.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf\xc2\xa4\xf9@T/\xf5\xd1t\xc7\xeb\x04y\rr\xba^\x9f\xf4\xfb\xaa#\xf6lX\'\x03u\xc6XZ\x8eK*Zs\xdb\xcaV\x92\x84\xc5\x05i]\xb6N\xa9&a\xe6\xa1\xedgd\xc2\x8b1Kq\x90U\xe0\x9a\xee\xd6BdU?\r\xd2\x13}u\xf6\x9entz\vW\x04\x968\xc5v\xe0t:\xe0D\xe8\xca\xb8\xd5\xb0\x89\x90\x928\x1d\r\x8b\xf2#8\xf5rI=6\xa1L\x19>I\f\xe7\xab\x98\xd2x\x82\x820\xf6\x8b]T\xd1\xe0\xefD\xc3\x94O\xdd\\\xd6\xb5z.\xc9z>\xdab\xcdw\xbf\x91\x190we\xa5\xfc\xf9\xaf\xedA&\xd50\xa9\xf0\xbeX\xe8\xd0', 0x500)

29.034004964s ago: executing program 3 (id=2401):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000140)=0x801)
ioctl$PPPIOCSMAXCID(r3, 0x4004743c, &(0x7f0000000040)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x20)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0), 0x8017, &(0x7f0000000200)={'trans=virtio,', {[{@cache_mmap}, {@version_u}]}})
lstat(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000040))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x10, 0x0, 0x1780}]})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040), 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f00000000c0), &(0x7f0000000180)}, 0x20)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r5}, 0x94)

28.764810266s ago: executing program 3 (id=2404):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=@base={0xa, 0x16, 0xb4, 0x3}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f00000002c0)=@framed={{0x18, 0x8, 0x0, 0x0, 0xef}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r1}, @generic={0x79, 0x0, 0x0, 0xe7}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2}, 0x94)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f00000002c0)=@req3={0x10000, 0x1, 0x100, 0x100, 0xe, 0x0, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)=@qipcrtr={0x2a, 0x3, 0x4000}, 0x80, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)=ANY=[], 0x20}}], 0x2, 0x45)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
accept(r2, 0x0, 0x0)
shutdown(r2, 0x1)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x200000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000140)={0x1fe, 0x6, 0x100000, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000001100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x3}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{}]}, @func_proto={0x2, 0x0, 0x0, 0xc, 0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x4c, 0x0, 0x2}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r5=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', r5}, 0x94)

27.505884952s ago: executing program 3 (id=2422):
r0 = memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
r1 = dup(r0)
write$sysctl(r1, &(0x7f0000000400)='0\x00', 0x2)
r2 = fanotify_init(0x8, 0x80000)
fanotify_mark(r2, 0x1, 0x8001021, r1, 0x0)
mkdir(&(0x7f0000000040)='./cgroup/../file0/file0\x00', 0x4)
mkdir(0x0, 0x0)
io_setup(0x66, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x1, 0x13)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000001c0)={'tunl0\x00', 0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000300)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x3}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x90}, 0x40c0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

27.440559159s ago: executing program 3 (id=2423):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FIOCLEX(r0, 0x5451)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vxcan1\x00'})
syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2"], 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000440)={[0x3, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, 0x2, 0xffffffffffffffff], 0xeeee8000, 0x200})
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x42)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
r5 = syz_open_procfs$pagemap(0xffffffffffffffff, 0x0)
exit(0xf)
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r5, 0x114, 0x7, &(0x7f0000000600)={@in6={0xa, 0x4e21, 0x9, @loopback, 0x400}, {&(0x7f0000000340)=""/79, 0x4f}, &(0x7f0000000400), 0xc}, 0xa0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
ptrace(0x10, 0x0)
ptrace$pokeuser(0x6, 0x0, 0x388, 0x2)
ptrace$pokeuser(0x6, 0x0, 0x358, 0xff)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x0, 0x20, 0xf55, 0x1ff, 0x9, 0x0, 0xae9, 0x4, 0x295f}, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0/file0\x00', &(0x7f00000001c0), 0x800, 0x0)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

26.364909409s ago: executing program 3 (id=2436):
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x6931b000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66)
ioprio_set$pid(0x2, 0x0, 0x2004)
syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
mmap$snddsp(&(0x7f000048a000/0x3000)=nil, 0x3000, 0x2000006, 0x2010, r1, 0xb000)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)

25.711110126s ago: executing program 3 (id=2446):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000002e00090027bd7000000000000400000004001f"], 0x18}, 0x1, 0x0, 0x0, 0x2804}, 0xffffffe4)

25.631156796s ago: executing program 36 (id=2446):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000002e00090027bd7000000000000400000004001f"], 0x18}, 0x1, 0x0, 0x0, 0x2804}, 0xffffffe4)

11.220216098s ago: executing program 5 (id=2664):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000000)={0xb, 0x102, 0xfffffffe, 0x595f3152, 0xe, "00e47903e795efffffff001900"})
write$UHID_INPUT(r1, &(0x7f0000001040)={0xd, {"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", 0x1010}}, 0x1b7)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000040)={@dev={0xac, 0x14, 0x14, 0x1e}, @dev={0xac, 0x14, 0x14, 0x20}, 0x2, "4f6fb4d1af0f724e6118ecfbac0200843af29708e2355d0e7ea0c5c8ce1a00", 0xfffffffc, 0x4, 0x81, 0x800}, 0x3c)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c00028008000140000000001400017b090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
io_setup(0x20fe, &(0x7f00000001c0)=<r4=>0x0)
r5 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
pwritev(r5, &(0x7f00000008c0)=[{&(0x7f0000000140)="a9fca65f5402f1fdd7a2c4fb79b9eeac60312ab72a6facf4779624b73b68c14a3287fe26edf1529c2c1a763610b225d97a6341cbc0a74b3faee9e7d0919a54406d4b66ae761984e309c15b53fa8294cbdf1a97e2", 0x54}, {&(0x7f0000000380)="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", 0xff}, {&(0x7f0000000480)="59d79974bfe16fb0a16dd68f842296f4a8b322b7f64a3d77905c2bcf67a6b0a249963dc57eb5322c0e6e9dec0552eb7d52f75f487b4bdfb21828e035bf51a662c53211a9cb1b9b44beccaaade40cb70273af87e54d209c3c32abd987f55eb1e7251216e68f919b4f369f4507f296f51610fd15766adf4804a33e828499b1208e6fb313653f3b0ee0e1b8b3dd8796e64b9500c0d08a27f382f0c2f0606679ea1d826cd31618748062146226626a53920b7a921203d8353277fe4236b09a847ce9d2d0f08ac856ab9077ffad2d614bf4fd8152dd84a5b70e5c431f", 0xda}, {&(0x7f0000000580)="41b053764d0189978bb7a5c29107e984a1e497f304689fe31ac378e2d390408e8e9af69c06adf5df33941b62d61dd3c24877d49f545053636b42a1da5997453c799a2c195fef8b79417dc475b64a1d2104d3cb1880a7efea5830956eda2e45384400d4652388fa9dbcb82b18c69ef9b9a25b68be192d933d97fab6dba06022ad60d65a48fb109ddf2b56487249d27003bbe47ff74424ceadc892fa9b06a2c4b2343c06f2cb2ea416d39b285de3f93e8ad92663153dfe3209b2788ce2477f36e9078022339d966f286c53269184f3e29e248faa551b8deb34fb5614d318", 0xdd}, {&(0x7f0000000680)="4fe335d645db7241705e79ee0726b3010638e353951379d559fd4a8739ebbe9e4f85d3147db433d13bab90eb740650c61cb0126a5ce0ea6749874c06e5e18636e7895125551936257cea4bb424a7efd4797a41e17a3cd7404fd0f3bdbc290447d45b3a55c37488c8fd62a6d2f0a4e4e9462bc46dad038c0028457499d94144d0584a065b866a33ee88e967c471fa80515397589153a467e5bc792ff4e998e999eb7db440578eec74ac479b23b230e54543557f0e6bb206e71da2e7a59e183a16b35d2d163409a284df", 0xc9}, {&(0x7f0000000780)="38f2a7169eb18efd5114a9f0f685b3503e19b890313cec9626e6ca4da4f636588cf56342a109f4d2bb82e490c4a986d16a0ce8404f0cb4bd6b021d7cd04a8cb418209d7ebf65f333ebbc46518a7402b8718bbf652195a89767fb52b5e439de033b167354849b1ad3", 0x68}, {&(0x7f0000000800)="5ac4bd9c52dcd46ccab139327f3e73f85ee8ac9bae2d474cdac8f304e43759f26c57f4e88eebd5417451624d12d205042eebe048f26bea8a4f3bd2dc8c33", 0x3e}, {&(0x7f0000000840)="d659a6c69eac8126999aa1116f379a18b8ce0805a1c2c6e5b5f03d0ac3254e4eb201cb3a55b2890eeb4a335e3e49849b79d7db0512bd5a3210c01c0991aaf158", 0x40}, {&(0x7f0000000880)="f5baf86c5fe0706edffdf72c4765e1179eefbb3a3eea7f76adbd24f4fbb575647b97", 0x22}], 0x9, 0x2, 0x1f0)
io_submit(r4, 0x1, &(0x7f0000002680)=[&(0x7f0000000a40)={0x0, 0x0, 0x2, 0x0, 0x0, r1, &(0x7f0000000340)='\t', 0x1, 0x600}])
r6 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000040)={0x97}, 0x8)
connect$inet6(r6, &(0x7f0000000300)={0xa, 0x4e22, 0x1, @private1, 0x5}, 0x1c)

10.280241858s ago: executing program 5 (id=2672):
r0 = socket$netlink(0x10, 0x3, 0x9)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'vxcan1\x00', &(0x7f0000000040)=@ethtool_gstrings={0x1b, 0x1, 0x3, "719842"}}) (async)
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f00000000c0)=""/18, 0x12}, {&(0x7f0000000100)=""/192, 0xc0}, {&(0x7f00000001c0)=""/4, 0x4}], 0x3, 0x0, 0x6) (async)
cachestat(r0, &(0x7f0000000240)={0x0, 0x3}, &(0x7f0000000280), 0x0) (async)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000002c0)=""/85, &(0x7f0000000340)=0x55) (async)
chdir(&(0x7f0000000380)='./file0\x00')
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000003c0), 0x9a240, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r1, 0x40085112, &(0x7f0000000400)=@n={0x1, 0x3, @generic=0x7, 0xd}) (async)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000440)={@broadcast, @empty, @rand_addr=0x64010101}, 0xc) (async)
r3 = socket$inet_icmp(0x2, 0x2, 0x1) (async)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000480)=<r4=>0x0, &(0x7f00000004c0)=0x4)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000500)={@dev={0xac, 0x14, 0x14, 0x33}, @multicast1, r4}, 0xc) (async)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000580)={'macvlan0\x00', &(0x7f0000000540)=@ethtool_test={0x1a, 0x8, 0x3, 0x6, [0x6, 0x1, 0x3e00000000000000, 0xfffffffffffffff8, 0xffffffff, 0x3]}}) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x5015a0, 0x0) (async)
rmdir(&(0x7f0000000600)='./file0\x00') (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000640), 0x200000, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x23)
ioctl$FITRIM(r5, 0xc0185879, &(0x7f0000000680)={0x9e7, 0x8000, 0x836})
ioctl$XFS_IOC_DIOINFO(r3, 0x800c581e, &(0x7f00000006c0)) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000700)={{0x1, 0x1, 0x18, <r6=>r1, {0x8}}, './file0\x00'})
sendto$unix(r6, &(0x7f0000000740)="2223bc7f4ab67ce6ed0dbe6db1a652b274a484cbc05a326d9f012076a5d52e8618671d115d96fe47480cb9c22b0e72d69b5d6577e0c16d99d5840c8dd1afb65f43c50bd872e19f6d41e480365cb606da62ab2b69facd3728b7bb98ddd91d65ad5219d82c945958565bb64d702c0f817618b5d4e1d5e45e4e72915463458b45157aaedc18a1d1393f68680332a79f69c185d89ce0f8163c3b5d811816ae7bc527d02b061f81dd2ea78dbe48d8984adcb26cecd046718badcb5f18a8bc673f6d36be", 0xc1, 0x40004, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e23}, 0x6e) (async)
setsockopt$bt_l2cap_L2CAP_LM(r6, 0x6, 0x3, &(0x7f00000008c0)=0x60, 0x4) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
write$sndseq(r6, &(0x7f0000000900)=[{0xff, 0x9e, 0x24, 0x5, @tick=0xebc2, {0x0, 0xff}, {0x3, 0x7}, @control={0x1, 0x8}}], 0x1c) (async)
r7 = openat$cgroup(r6, &(0x7f0000000940)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r7, 0x80049367, &(0x7f0000000980)) (async)
write$P9_RXATTRCREATE(r6, &(0x7f00000009c0)={0x7, 0x21, 0x2}, 0x7) (async)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8982, &(0x7f0000000a00)={0x7, 'pim6reg1\x00', {}, 0x8})

10.280033294s ago: executing program 5 (id=2673):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

10.162743617s ago: executing program 5 (id=2674):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x1cb)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0) (async)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'xfrm0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040034}, 0x4c802) (async)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

10.023722513s ago: executing program 5 (id=2675):
openat$dsp1(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x80602, 0x0)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000040)=0x1)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0xffff0000, 0xf0, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48)
r4 = socket(0x1e, 0x1, 0x0)
connect$tipc(r4, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TCFLSH(r6, 0x540b, 0x1)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r1], 0x20}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x401}]}}}]}, 0x3c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0xa, 0x3, 0x87)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r8 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r8, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r9=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r8, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r9, 0x0, 0x0, 0x0, <r10=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(r8, 0x3b89, &(0x7f0000000180)={0x28, 0x1, r10, r9, <r11=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_HWPT_ALLOC$TEST(r8, 0x3b89, &(0x7f0000000200)={0x28, 0x0, r10, r11, <r12=>0x0, 0x0, 0xdead, 0x4, &(0x7f0000000240)})
ioctl$IOMMU_HWPT_INVALIDATE$TEST(r8, 0x3b8d, &(0x7f0000000280)={0x20, r12, &(0x7f00000002c0)=[{}], 0xdeadbeef, 0x8, 0x1ffffffffffffe03})
r13 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r13, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @random="2b0436d23321"})
write$tun(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="034886dd1200befd0000140000006000000008008700fe88a43de1a400000000000000007d01ff020000000000000000000000000001"], 0xfdef)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000004000"], 0xe0}, 0x1, 0x0, 0x0, 0x20004010}, 0x0)

9.692123858s ago: executing program 5 (id=2676):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xb9{\x0fQS\xa7\x02\x93\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\x86\v\x9cL\x8e1K\x00'/158, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xae\x9c\xba\x1c\xfa\xbc\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder-control\x00', 0x800, 0x0)
preadv(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)={0x6, 0x0, [{0x95c, 0x0, 0x9}, {0x838, 0x0, 0xa84}, {0x9b0, 0x0, 0x4}, {0xc0010141, 0x0, 0x7}, {0xbc2, 0x0, 0x76}, {0xaf1, 0x0, 0x782}]})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080))

9.67207263s ago: executing program 37 (id=2676):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x7, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xb9{\x0fQS\xa7\x02\x93\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\x86\v\x9cL\x8e1K\x00'/158, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xae\x9c\xba\x1c\xfa\xbc\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder-control\x00', 0x800, 0x0)
preadv(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)={0x6, 0x0, [{0x95c, 0x0, 0x9}, {0x838, 0x0, 0xa84}, {0x9b0, 0x0, 0x4}, {0xc0010141, 0x0, 0x7}, {0xbc2, 0x0, 0x76}, {0xaf1, 0x0, 0x782}]})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080))

1.68881278s ago: executing program 0 (id=2784):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x2a, &(0x7f0000000000)=r2, 0x4)
sendmsg$unix(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000002c0)='g', 0x1}], 0x1, 0x0, 0x0, 0x40}, 0x40000)
recvmsg$unix(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x40)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x600000, 0x9)

1.389507979s ago: executing program 0 (id=2788):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r5, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="edcb9dac", @ANYRES16=0x0, @ANYBLOB="1a012cbd7000fcdbdf253e00000008000300", @ANYRES32=r3, @ANYBLOB="0c009900010000007a000000"], 0x28}, 0x1, 0x0, 0x0, 0x4004800}, 0x1)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x30, r2, 0x5, 0x74bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]]}, 0x30}, 0x1, 0x0, 0x0, 0x90}, 0x4004084)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x7c, r2, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
ioctl$EXT4_IOC_SETFSUUID(r1, 0x4008662c, &(0x7f00000000c0)={0x0, 0x0, "744640611e0d4f06089241a59976035c"})

1.389375346s ago: executing program 7 (id=2789):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000040)={0x97}, 0x8)
r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0xa0200, 0x0)
sendmsg$key(r1, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f0000000340)={0x2, 0x0, 0x3, 0x0, 0x205, 0x0, 0x70bd2d, 0x25dfdbfe, [@sadb_key={0x201, 0x9, 0x8000, 0x0, "2e96c40e6e0989e4afb07b727c1b1fa200ccc4145a82dcd128c331b7cf98310a8be2599c607f54d37b080d068fadd5ead97bc1d6f878ee6e036ac53724d4ce83d21a80564c9d8caa3026562e2ee379cfc31fb6fba1f6d862a943632d45fd369a4bfeea66958aa2e47d27bd0e734133da4efaf8bd7d5a25f053cb023fe3291198a847b8bcc385d2a274f5ba9312caede172b48407f91d4a6f6dfb2d9a3ea4003b5206335e5cb56b2edebd9fb26d3958ab24453bc38c7ba7c444aa6f1a1dbb41d4d15fc2cba34e0e3f6aeb9151d47c9c6a6813a25d4819319015b80b4558704ff28f797ca84d38c80cae7f9734880ca6efa31934e2021c8dde5f64a726dc517ca92f6a6a5546355f7d21189dfd8c9cce83aa8d13728b470d29e488c261f28ac0e7c6b930b19940b3403417b78e3afc1eebf2e334e839f31bf30420e3b6b2e25c98d40882fdf8464e50abc9c7938ddbfa3c96d61d830a3475f77f4880f488c19a221b1af52b8cf0f0f9198adcbd65b28759dbef03f20b1036f8ea244852e00fb19337525612e27367cee0c4cc8806609cedcf1a06665b276c724bf8cecba706bb7156f5089fdaad9af5aaf2d7be537d83a22f70f9e873594a9463be33dfc05ea99c3903790e3bce714f9ad4ce03dc35a2b3949478cc6fba54fad2b18fe996311d63cbaead1f1ec1102478973ee08370bbf594e2f7d5fa10aaad175c7f332dcd5ccd211255ff78b6036b0a8fbd4998bd394a598ec36174fc57c80d88c9b971fa4520ba395a2f53f0da63c7066f2c9e33f202eba3ea9cabdd8ffaeaf92dde1e72de066889e76d0e1967463bc320403e715169761f0bbede1802c2ecd1669a35ea1629d35be48c8d941824a8fabbfc0fa8639befe02f50ad69c218bc4b41ab5596bd133b348c647260e3b101f82bd800b6fa8b0ff8294f8ad1e26a38a5fbf15dd5e46f084f715203e8d19c98a226fcaf21d67e910cf0aa96b20f43380d1f1dbc8917cea01ad68f73153dc7bb20cca621f438f79732c1f76960bec51a9c14b22dedce4bfa4c503b51415dc8ef8d45a2b483138f184fb6a73d69307d20a5317d8584ac0dfbc741548b653f896ab60fed6d857980135dd6e27a1f7a471579a9da04da920baa1b5966b0823bc2b49ed99e360d65ad345c96a2498581f01bd24cc79dee26817b674b38d574e93e7a812eb6ebc561811f9d6bea899cf8c6abe3eafc92ba1b80d4e17552f43e9524db8acff336046dc0b6e6cd6fd39abdfdac6a5cae87cf8f2a541f92c89160a9f63074da7ca77381b0f66f1dc5578d53e8d1e4afdeba5c4ece9392f52195d8228e34003989cc57117b4525d37b8779e050e51996afbe4943f29987387d9a86ac29cd14ca85d043e2f3bea40de1a0aa0e28ec0373adb6d2876f4aed44a36ad02f9e89e7251a12c9db9d6601b2ac62beb3a8c0bd59eda96ff5698521ef9054d75eda70f76485fa0826db7df4b0b4add5faa2479e95cf4b1622b2848d6c12b0ec6e141ce47d8610a78d269f22e7c821047d0e7343886fd05371305ce17cb46359a9fa875ab3d03759e3bb64733d45497f22019afab55b8447938394759de3a08c080255682c83bacb05740f9743e94f4b06a3aca44340ee7c2527fa10162160aefe84041c97fbe279d27acd3fbc3ea5215b93ef5e53f9ee867aea39dedc2bdfbfd38eacf224ed4f0bc6c4ee9f51d439989a0e609a9a6f73e281e4d62ab1610f9f9d884ba015a65722e433d2c8d8e6e65d9f68750fc0201c8d561e284b087f41845b0f2117dc7363b15d9768733dce744c3b674485d882eff739e3edd754b694345a4c4be7ba080e7fee877675cb8543641b96e89015200f12d7c6f5538424caeb9db6c31445b7c3840eb9e44584d5726fb189b13096aa74def38873f05e39097ecd6c9cb9e53cf3e3e38a801289b91d94d7c99fb9d73854e466de83a5c7c9ab88098db7a9e722e1fdc8a7e06a5717031ad41e7cff43315d4cd6b08f68fef36c8b0dba418643794e532a598490b25fa6e29f1a5750e335e908fa4de2197891b28f5fd6151e143ebf50079987a5c865c8d7857e7196eeb6a86b8c9aa564f24513cfbc76982f8dd174e1a237cba49a85fbcc9d4af3a84f9d75e74c3953649169479053cfdd4f8b67949d3d4d8e45105f0d946d2df4d0f596d0b180f12a5e94d3a696da6f677e0ea4da01727f09c153db3074843f65e29678525171870eaff3660cf08de9abb315e564f205966a033524ced8148aba37c1fc894bf458a628e8eea6a20e3a70d64ba9744f7c5989269cc1f7bd278d2af5a68eace94d68ac6fa3dd907c6e47c1043fd1407abfe4d3335a759fa62b512b4d79333903af4c344d7c0804722ff102f98653d9eb7375d2773120f8e99981fecaf613cdc084863b004516b950dc26740a201b8ecdc45ec1205fc111d490fad0ca79988652d49c0f258968f2d1dadbe79e19a982addf9b31e84d41911972691adc707c4d99089c48e1c5fb34fa51a1668aa331164761197910a3368ba324432d30497aed0e88772b6a71f01ee023191f18be45a296766e917b33cd6b41a53a0a02ed81865be548a9bb22627bcdfdd0e07b88ee9a36854450e695d9c3ab5803f86bd43173bb102ee1738276a829e836a296ab24ade7e35dcbe3f65d3be20952c048593aa0ad326931dedd31f5510a7375e5feb40d9a70c3de78f5e741ab1257d8d6244ee41840b537575724613c5cee6671043db847bc9491b822ef77b5fbe02299a3fa32cc73e66631b03b9ec556353ae307e9f6b04b0499c4b963aa901a7be04b4374fff5ab470489e90a491b6248a4b8ec5a964efab506673d8c83c7ef56db2ad077f5585d6f0430dcbacc9fd4b4ef5d56bfcf77f38c2dfb416cddd314a9f24ac08d3a11954433f1a255c6ea793961426f08caf5a8101cf4d03ac8a45f95b00ecf66b02e311cd283c0469d28b73e6a98d361622993b1ed43411e2f1818f0782f18fed5e670d9a9e150dd6a177b365384d368cfb0089e73f1d38f0b1556dc06982c7bd62dd80dbc60b79df4165271d0ceec333b122c3c2a84b90da57a916f550c5d50067f227e72d1de01d7cf95be0bedbb8940eaaeabb86d7b25fd75c71626276e8e89aca062bc7aa7c99185f06bb76d42174aae26fd0c02f3a8f8c653812be072b3d24319f7743ca24adf19d8dc7f1f1d83eebed97e7a5ffe88b0756c8d961eec255e459b2e02836f41ffb3b8f24f617ea96268ce30e63550d5a46620d37fe670237f53fe2e8d7211fabdb9fa89b412654e5afe70576492b2b32a56e54a04dbdbf55b9f91b735a55cc30ba2804734cab7511490ca620520c452601092d21ada1421fa6bc6db93b23f751881b97e7b1c612f453700e9e94c18db808f5ba8679cfec17658283409e5e2f1702f2f76f5c5ddce124d9c6988ef2e22df99505c74bd50738f215bd6f74de734daa24a71eadefaf8878bc3726508aaa2ac30d38d2adf1f2e4450188f1e3be3244fe6ab69acd14c1b756c096c46b3d7e3ab9bd8b1b411a8e2c57d1757dbe933e9fa023ac96629947f4e4207f76f6924e4f5f270b0b3a46e029b2f7411d5d2845fc50c64d2ff9b5ba46d1ada2de72572e7f7fa93da8bf35cb076d64f34629771ef9bfb9c5bb686cf67d4cb5897f346d6bc8bd735dbd4f7876443064574e04d9dfccf8c9f8903f03671445554981e7232e08afaf95b710441aca972ffcf93e2db91f135c482307099e498eef8f3d6d41e1c492d2aabc83ba99b40db7c33da8ba1dec6fac9bcebd6a4c9b71f684528da1faa96cfc4e084c42c8efd43696fed4935cb4b97d7baf5471fb39d22d3481a386b164df293c3a103dcd0def7646c54b5e515ba27662611fd47efdf4def8c80f1caef3aa6c2b201d84c23494e79c6ccfd51cbf9fd0da97fa145e4f5f2b942db95f7d9638b7290d5c3799bff71c179c84e6afbb48bb07c9e6f2daeec49db2c7e51f881d58c238afa6d29e5510e7d96a78fee046de7664b47cd0ba65e9cd35b37553f6ab5ee7cc73c283aa2aaedc2ccd49690b5d563b4b5fbf27a76231d84c0d3ded64e713b1a35a7ef1694b7df84561b8eb3319343ec49bdf0aea41578a2e605e3b77ff711084368a0941937971d8566e8cfdcd644b6debe2d8a0499b032e0c68d3fcc35ab45cd98c6cb006848d69deb859e2a4c1617f8ab3c16401fc8a66f8fb29b95dbde69f2950a681a1e63fe66fb59ae849806710edf02322208dfe14eb86c9165a415d0cec20fbfbe470882f97162e33b1e691cb778dfa75e70e6b702b5fa2030654a5a8167d015d40551c8b08fc3cad17caefd5d6ecfbb0026c2e4268173f0172c8718da5bbe9e72ff04d9f9686276476781f6cf5b47899f515b7ac44a7f739a9f45981b5cefb0d12376f4af456b3e396df0b8e2f1d1a889e5b1e53235f87b86a84614675a69f416a6972e5a92573e9b5bd50e1ad1039484ae910c6c7b8e75aa2c271d783d19a1257a64ac057d76d2527a946dbeca370869e4902e10cc3da45bb40b1f8bd54592cd0adf25132e63890e59d43448becf370f55bce1f5101d662825467189fdede8c0b21e9839516a438ccaa06099632eee01081757d43b1975f7b1c2b23a49889e72fe8413bcd95a4b57606dd1bca467d976ddaf4daad4900d790be24aa17ca46ea5a2da55a54ceac66cc83c0450c98683b2f7d999e2e9fbd917c40f719f604aa09af88b2e38dc6788ab3f93ad2ad8a3ad7dc0ee905aeb3251b0ee2a34f7a8a76ad3edcb2146c19c4b6c98adee18bca1d3a5c3dcb8d0453c44a2c5df808da66b6ca7faa72bad80a0f42f1159c2b3d68817e16081c4acac8ad914287e5f0987fae8e5922c28b4fc6a92e2929373654548bfffc24ec0e35abde08841f75ba9e704dab356a75c02a75cf379bf68c11a7e50bcb5ea8f9ff9f204b1fb4a740adc38d563efefda13fc83c44ff96b128f2f79ac91fe3855059d1d08ea3b9ed2e3c83af7482698259dbebd0bf64b3b68a17168d48c38233165d94918278002a53b6a82706741bfb34d383072bb5a9022dbf5dd92e58d6e4849e557e780a24a312e9a5a31a0a216f53f943c977f711e361d50a1936da87ad9d9e7a56dcc2dc00f61703a9761f48642e802bdce6e6f1a0be2acd74f06dab9a5cdd641e2ccb0b6f32e55e8d176d9f68c8d48930f0ec050c23dee5d626c926adecdad2171b720b729341e7174fa17e5397b2c0e22d241961e4dba5011993a400cf072346f0432282baed055f51ae376b6fe064f99f74d78f9d94d7a908dc0643cda91fb22e29bc0d3cf1b847267624c19ea325030a00dd1588edbdfcc591280fb468e8bf96e7c21898acd481ad10b62e45a8313ef5b65cf0c91ad0042602db6c63669fb6166aa575bf377b7faa197174844943dd326805536edf939ba7fbdfda0a95d56969ae0a002abd9e2c65297ac06819a509a744b42aacb91c84933a8b96eca7aaeb28f3134d07067d940056b2d8e95b241f0c42d9b92cc05d7130e3fa4d3edbc92ca48795164ac5e5146f5a8b40f4a1ac1084f94edbb43f7dc6c836db2906f76446d26d3d0c2619d39fdfd641e9817a914aa1cf6b464540cc11ff2bb057694665f5fd3c06bca16f562bbe487056153b20e7fdb9cdf17436a72299bddc02f864342933bbc2df98780b8e638886790ea5b31ef51f4f48287a6a39c53c8e310c596bd2a45c88b306216d6c7b1ec3ea8b042f91ddb010f94efd015081a945922c8b540f4789d5c2bb579b2daf5b7d513c9ddc5eedb2512187671c873af8c26b7413699efce70f55f1226ce9daa6e97119c2c"}, @sadb_sa={0x2, 0x1, 0x4d2, 0x0, 0x7a, 0x63, 0x4, 0x60000000}]}, 0x1028}}, 0x20000800)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x4e22, 0x1, @private1, 0x5}, 0x1c)

1.305245954s ago: executing program 0 (id=2791):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x28, r0, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}]}]}, 0x28}}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x80040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x9, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000480)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r7 = dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r1)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r7, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r8, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x8}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000101}, 0x2404c800)

1.175635915s ago: executing program 9 (id=2792):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37}, 0x28)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001011ff0000000000010007000000000000f5ffff0200000000000000000000000000014f194e20"], 0xfdef)

908.320886ms ago: executing program 9 (id=2794):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="c40000001900674c2cbd70000000000000000000000000000000000000000000ac1eff0100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0100000000000000000000000000000000000020000000000000000000000000000000000000000000008000000000000000000000000000fcffffffffffffff0000000000000000b0ac00000000000000000000000000000000000000000000000400000000000000000002000000000a00100001"], 0xc4}}, 0x4c050)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r4 = syz_open_dev$radio(&(0x7f00000005c0), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x9b0906, 0x2, '\x00', @p_u32=&(0x7f00000000c0)}})
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1, 0x11, &(0x7f0000000000)=ANY=[@ANYBLOB="180800000500000000000000fbffffff18110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000030000008500000005000000bf090000000000005509010000000000950000000000000018190000", @ANYRES32=r6, @ANYBLOB="0000000000000000bf9800000000000057080000000000008500000007000000b70000000000000095"], &(0x7f00000002c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="034886dd010000000000140000006000000003082f00fe88a43de1a400000000000000007d01ff020000000000000000000000000001"], 0xfdef)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = socket$inet6(0xa, 0x80003, 0xff)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r10, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r10, &(0x7f0000000300)={0xa, 0x4e22, 0x2, @empty, 0x5}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r10, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r10, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x304}, '\x00', "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "9b1f80001b00"}, 0x38)
sendmsg$inet(r10, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x100}, 0x0)
setsockopt$inet6_int(r9, 0x29, 0x16, &(0x7f0000000300)=0x9, 0x4)
socket$inet6(0xa, 0x80003, 0xff)
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r11 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$int_in(r11, 0x40000000af01, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40102, 0x0)

907.546551ms ago: executing program 0 (id=2796):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r1)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x24, r2, 0x1, 0x400a00, 0xa000000, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x24}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, r2, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @remote}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xb}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x6}, @NLBL_MGMT_A_DOMAIN={0xa, 0x1, '{)--*\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x51e252e88acb3710}, 0x4080)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000280)={@multicast2, @local}, 0xc)

822.533097ms ago: executing program 0 (id=2797):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@struct={0x7, 0x0, 0x0, 0x7}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x25]}}, 0x0, 0x2c, 0x0, 0x1}, 0x28)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$video4linux(&(0x7f0000000040), 0x10825, 0x55a9a1)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r1, 0x4020565a, &(0x7f0000000280)={0x3, 0x980900, 0x2})
ioctl$VIDIOC_QUERYMENU(r1, 0xc008561c, &(0x7f0000000000)={0x980900, 0x3, @name="51da06bc7338e17dfebb1580e15b95473b09f0d1fb8aa1e9959ef9dc00"})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8004}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x68}}, 0x0)

821.365394ms ago: executing program 0 (id=2799):
r0 = syz_usb_connect(0x2, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d000110000000090400"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x4, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xe, 0x8, 0x80, 0x2, 0x3, 0x80000000, 0x20000006, 0x1, 0x6, 0x5, 0x9, 0x5, 0xffff2d37, 0x0, 0x6, 0x2, 0x0, 0x5, 0x4, 0x4, 0x9, 0x3c5b, 0x1, 0x24, 0xd, 0xe, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x48, 0x4c74, 0x80000000, 0x242, 0x3, 0x4, 0x0, 0x80008071, 0x7, 0x8, 0x1, 0x7, 0x5, 0x3e, 0x8c, 0x6, 0xffff, 0x3, 0x5, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008005, 0x5, 0xfffffff3, 0x4, 0x6, 0xf9, 0xe, 0x2c0, 0x7, 0x209, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x81, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f2a, 0xd, 0x4e2, 0x2, 0x4, 0x200, 0x4, 0x9, 0x8, 0x9, 0x2, 0x8000047, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0x81, 0x253, 0x42, 0x3], [0x7, 0x408, 0x2, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x3, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x0, 0x4, 0x2950bfaf, 0x1000, 0x4b2760ed, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xca, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x1, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2eb, 0x0, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x1, 0x93a, 0x5, 0x6, 0x1, 0x8, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x201, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0x5, 0x2, 0x5, 0x4, 0xc8, 0xfffffff9, 0xfffff000, 0x10000, 0x6b, 0x7e, 0x100, 0x9602, 0xfffffffd, 0xaf, 0x5, 0x6, 0x9, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x400007, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

468.833242ms ago: executing program 9 (id=2803):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f0000003380)='system.posix_acl_access\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="020000000100030000000000040004000000000010000500000000002000000000000000d0452717fa2333fc53f144bb2c0429dd418c7baa6827887003069c7bd43806b79c8aa6e926b3a1aa2f13d145ac6c3e15ce597d783465e37c1a24251b06e9053052ff684e61fa0e4828da870e78834fd17276f7dc"], 0x24, 0x0)
lchown(&(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0)

468.059953ms ago: executing program 7 (id=2804):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000140)=""/61, 0x3d)
r1 = openat$cgroup(r0, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r3 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r4 = inotify_init()
inotify_add_watch(r4, &(0x7f0000000080)='./file0\x00', 0x88)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x121080, 0x10)
rmdir(&(0x7f0000000140)='./file0\x00')
getdents64(r5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000094000000060a010400000000000000000100000008000b40000000006c000480140001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205"], 0x108}}, 0x0)
ioctl$VIDIOC_STREAMOFF(r3, 0x40045613, &(0x7f0000000100)=0x9126)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
fchown(r2, 0x0, 0x0)

416.39005ms ago: executing program 9 (id=2805):
r0 = socket$inet(0x2, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_setup(0x206, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f00000005c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000001400)="95", 0x1}])
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'veth1_macvtap\x00', &(0x7f0000000180)=@ethtool_cmd={0x19, 0x7, 0x0, 0x9, 0x7d, 0x9, 0x81, 0x87, 0xda, 0xf3, 0xa, 0x31, 0xd49c, 0x4, 0x0, 0x6f78, [0x7fff, 0x7b0]}})
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYRES64=r3], 0x57) (async)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYRES64=r3], 0x57)
socket$netlink(0x10, 0x3, 0x0) (async)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f0000000400)=[{&(0x7f0000000380)="39000000130003470e0065e1c3e4ffff0100000001000000560000002500000019000c000400000007fdd431ef000000", 0x30}, {&(0x7f00000002c0)="7815d494fe8ea72bcf", 0x9}], 0x2)
writev(r4, &(0x7f00000001c0)=[{&(0x7f0000001400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200f9ffffff0006040000000000f93132", 0x39}], 0x1)

416.216796ms ago: executing program 8 (id=2806):
r0 = socket(0x10, 0x3, 0x0)
r1 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="500100001a000100000000000200000002001c1f0000c808ffffffea080006000700000008000400", @ANYRES32=r2, @ANYBLOB="06001c004e21000008000100ac1414"], 0x150}, 0x1, 0x0, 0x0, 0x2000c094}, 0x4040084)
ioctl$NBD_SET_BLKSIZE(r1, 0xab01, 0x9)
sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="22115d7bca202c30808c437980969ede3fab36a1"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000014)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@remote, @remote, @void, {@can={0xc, {{0x4, 0x1}, 0x3, 0x1, 0x0, 0x0, "68cd34cddfc8cb51"}}}}, 0x0)

415.994247ms ago: executing program 8 (id=2807):
r0 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x9, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="b400000000000000dd0a"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x19}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
ioctl$DVB_DEMUX_DMX_REMOVE_PID(r0, 0x40026f34, &(0x7f0000000040)=0x1)

351.912968ms ago: executing program 7 (id=2808):
syz_emit_ethernet(0x3b6, &(0x7f0000002140)=ANY=[@ANYBLOB="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"], 0x0)

351.187166ms ago: executing program 7 (id=2809):
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x2040, 0x0)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e0000001eaf"])
r1 = socket$inet6(0xa, 0x4, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="f348c3bc784581e0d37be6e43c1112"], 0x8)
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f00000002c0)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=ANY=[@ANYBLOB="90000000", @ANYRES16=r5, @ANYBLOB="01002abd7000fcdbdf250100000008000100", @ANYRES32=r6, @ANYBLOB="7400028038000100240001006e6f746966795f70656572735f696e74657276616c00000000000000000000000500030003000000080004000600000038000100240001006e6f746966795f70656572735f636f756e74000000000000000000000000f1000500030003000000080004"], 0x90}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e22, 0x9a0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}, 0x1c)

350.086505ms ago: executing program 8 (id=2810):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000980)="536e4804849c493dfdc6461c0742a48d13a54e221b4fae2fb181894e06e9ca73a90f2048cd4b5ca32dcd3f8b2862d91d466bd17ccc8d4d1812d8350b260a943e4990d379887e463929b219a7876052194c9b7b7a692de68681954e02902b94af409a3049d3a93b1a3717347cc46e5bf12ed04b22540bcd8d82ee120ca56b39f5c2bbf65e4b496fdb8496c4a56e4f7e30efdaf8a9ebe4968b22b9203a05183d9d9672b60d65b547ed82c3e4868cc24df866ed7dd6bd955a6679ed", 0xba}, {&(0x7f0000000880)="44566c43c5b3d0122a9bcfe95071f57741dfd44597238f265e39b1d21a2054a47513e1fb1e14355969e8f75db2f7792b954dd38d68d4000ed3b9ed787dde18aa31d34bca2365b025e31aae37413245d392a4d2313a6245075c31ff8e5dfee6fef21902578067ba0825afe34fc6d50840fb4ed915f4ea785f65344a4f0d58ab818c9177", 0x83}], 0x2}, 0x41)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
write$sysctl(0xffffffffffffffff, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000b40)={'syz0\x00', {0x7, 0x8001, 0xb, 0x3}, 0x3a, [0x8, 0x40, 0xf, 0x101, 0x5, 0x457, 0xc951, 0x9, 0x7, 0x5, 0x2, 0xf, 0xd8b681d, 0x7, 0x8001, 0x401, 0xc9c3, 0x400, 0x431a5f4b, 0x8001, 0x1000, 0x1, 0xf, 0xb1, 0xe0c8, 0x10000709, 0x10001, 0x2, 0x9, 0x4, 0x2, 0x1000, 0x80000001, 0x55, 0x9, 0x7, 0x5, 0x1, 0x6, 0xffff, 0x7fff, 0xa8b, 0x257, 0x6, 0x1, 0x6, 0x1, 0x4, 0x5, 0x1, 0x80, 0x3, 0x9, 0xff, 0x25, 0x2, 0x80000000, 0x8, 0x7, 0xff, 0x8, 0x9, 0x7, 0x51c8], [0x7, 0x6, 0x7ff, 0x2, 0x1, 0xb4, 0x4, 0x7, 0x3, 0x8, 0x4, 0x1, 0x8, 0xffff, 0x9, 0xfffffbb7, 0x5, 0x4, 0x9, 0xfffff27b, 0x7fff, 0x79, 0x6, 0x8, 0xf, 0x100, 0x4, 0x10, 0xfffffffd, 0xf9, 0xfb, 0x60000000, 0xfffffff6, 0x35e, 0x3, 0x10000, 0x9d2, 0x1, 0x7f, 0xa, 0xa7, 0xad1, 0x9, 0x4, 0x4, 0x5, 0x5, 0xfffffff8, 0x1, 0x9a31, 0x2, 0x4, 0x8, 0x0, 0x8, 0x8, 0x5ba, 0x7, 0x2, 0x5, 0x800, 0x1, 0xffff, 0x8], [0xcde, 0x75, 0x1, 0x7, 0x0, 0x2, 0x30, 0x2, 0x5, 0x200, 0xa9b, 0x40, 0x3, 0xc, 0x3, 0xce, 0x1, 0x4, 0x9, 0x7, 0x2, 0x0, 0x1, 0x2, 0xff, 0x8, 0x8, 0x6, 0xffff, 0x40, 0x9a05, 0x9, 0xd38, 0x8, 0x4040, 0x400, 0xe, 0x2600000, 0x0, 0x3, 0x80000001, 0x7fff, 0x1, 0x8b8b, 0x6, 0x200, 0x1, 0x40, 0x2, 0x1, 0x6, 0xe8d6, 0xe, 0x80, 0x0, 0x80, 0x800, 0x9, 0x3ff, 0x6, 0x0, 0x7fffffff, 0xfffffffe, 0x9], [0x6, 0x8, 0x9, 0x4, 0x1, 0x0, 0x4, 0x2, 0x5, 0x6, 0x2, 0x8, 0xffffff7f, 0xfffffffc, 0x6, 0x1, 0x6, 0xfff, 0x2, 0x58c, 0x7, 0x7, 0x400, 0x10001, 0x2, 0x5, 0x1, 0xb, 0x4, 0x5, 0x7, 0x8001, 0x1, 0x401, 0x2, 0x1, 0x2, 0x5, 0x2, 0x829, 0x7, 0x7, 0x61, 0x1, 0x3, 0x2, 0x5, 0x6, 0x5, 0x5, 0xff, 0xfffff36d, 0x9, 0x1ff, 0x0, 0x56, 0xe9, 0x5852, 0x8001, 0x1, 0x5, 0x1, 0x8000, 0x3ff]}, 0x45c)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000006c0)={0x1, @pix_mp={0x9, 0x200, 0x56555959, 0x8, 0xa, [{0x5, 0x3}, {0x0, 0x3}, {0x27, 0x101}, {0x1ff}, {0x1d3, 0xa}, {0x0, 0x4}, {0x1ff, 0xfffffff9}, {0x6, 0x5}], 0x7, 0x9, 0x0, 0x2}})
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, "f4ffffff"}, 0x20000000, 0x1, {0x0}})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000340)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f00000000c0)=0x5, 0x12)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f00000007c0)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

192.698505ms ago: executing program 7 (id=2811):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c0800002c0007012bbd7000000000e5087c00000c00018006000600843b000009000280040071008c0000000800e400", @ANYRES32, @ANYBLOB="2d0529800c00f800030000000000000004006080fa003b800400df00c1becb03dbe55b6c782cebd6a7bc78a21d1bc9f3c1bd441ada5266780599eaf18965bbfcc07c2037129672275c399e1e03f8a0664d807385cc4d566f230400db800400498096d9641e8b1887b25501b11ecd71313a47df368b078d7b825bff33b9eab3964d7b2394b1950c7aeaba6014fe2cd33c89fd070ce0f1f306494a44adf6609d8ad55a5080b36b"], 0x85c}, 0x1, 0x0, 0x0, 0x24048011}, 0xc000)
r0 = syz_open_dev$dri(&(0x7f0000000040), 0xfffffffffffffffc, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]})
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0) (async)
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x20004, <r3=>r1, 0x2})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000004c0)={0x0, 0x0, r3})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4044091}, 0x4010800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="6400000010000305160000000000000000008847", @ANYRES32=0x0, @ANYBLOB="00000000000000004400128009000100626f6e6400000000340002800500010004000000050016000000000008001c000000000005000c00000000000a001a"], 0xc3}, 0x1, 0x100000000000000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x2c, r4, 0x1, 0x0, 0xffffffff, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}]]}, 0x2c}}, 0x10)
sendmsg$NL80211_CMD_GET_MPATH(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000410a}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r4, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x3a}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x8810)
sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000000000001f2, 0x0) (async)
sendmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000000000001f2, 0x0)

191.768527ms ago: executing program 7 (id=2812):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f00000000c0)="ad57877f678615cea5858470ef9a9ce63f4388845b68d100479307c5d3db3216b7807206e76d92cff1013bd30a2e69ed768a65bc12b293c353bfd1a7c490b96aa3b3ee5d2f8197de941b151d00e13907b094edaa74621c59ccb3f96c04cacc0a81e98e6c72427f5a9775c5e4f2c8d78f12cdff12ebf387c786566c3de8cbf582d7", &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000180)="e440b0ae3b79330c04fc89149da024f1723e71ed0b08386a0ee4b85e32e73fa529373f7f50fd549c250d36cac067732577e1747914564f1a0b41466a", &(0x7f0000000000)=""/2, 0x2}, 0x20)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000200)='%-5lx  \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r2}, &(0x7f00000002c0), &(0x7f0000000300)='%-5lx  \x00'}, 0x20)

191.628157ms ago: executing program 9 (id=2813):
socket(0x1, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
write(r0, &(0x7f0000000040)="29000000140005d8ff00000004eabdeb0101b6ff02159f7e5520756b1933b49db96ad24d125957bea5", 0x29)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone3(&(0x7f00000005c0)={0x280a00300, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)

96.476755ms ago: executing program 8 (id=2814):
r0 = memfd_secret(0x80000)
ioctl$XFS_IOC_SCRUB_METADATA(r0, 0xc040583c, &(0x7f0000000000)={0xc, 0x0, 0x10, 0x2, 0x8})

96.091513ms ago: executing program 9 (id=2815):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000000)=0x200000000) (async)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r3, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000b00)=""/182, 0xb6, 0x0, 0x3, 0x2}}, 0x48)
write$vhost_msg_v2(r3, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48) (async)
write$vhost_msg_v2(r3, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_emit_ethernet(0x7e, &(0x7f0000000240)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x48, 0x3a, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @dest_unreach={0x1, 0x3, 0x0, 0x7f, '\x00', {0x0, 0x6, "e1f588", 0x7, 0x0, 0xff, @mcast2, @mcast2, [@fragment={0x2f, 0x0, 0xf, 0x0, 0x0, 0x0, 0x65}, @hopopts={0xbe}], "7bf354a4d44f873e"}}}}}}}, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r6, 0x404c534a, &(0x7f0000000380)={0x4, 0x2})
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x4b564dff, 0x0, 0x3}]})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r7=>0x0})
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
close_range(r8, r0, 0x0) (async)
close_range(r8, r0, 0x0)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES16=r1, @ANYRES16=r8, @ANYRESDEC=r0, @ANYBLOB="0315e6e12b1231f39da8efc060b8e02cbf0a53d0a43b752c03ff0aa6dc653661f2e5caa11a4fd5c266aa822f1b4f67b8cfa75918920f154b6ea7eefc468666610618e087d489ea8573c9ab46dd235ce4ab8d08c06cda1eb81b9c584b33e71393824f16a5c9b1e2bdbf9776202a3650ca5cafbfdfe822d6e1ec0f275b24b42d198ebea998d8c2b6c27dae52ee39f36bba84599be00950a2394817db109f0a162bba482fdbb93902ed925c6462d6069dbe3f32b751e4e3edbc28abcd5b89d615a86a530fa16a486aa77589da18115ab824da6cc7b47da2105e97e6353ef1fca6f3"], 0x28}, 0x1, 0x0, 0x0, 0x20044484}, 0x1) (async)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES16=r1, @ANYRES16=r8, @ANYRESDEC=r0, @ANYBLOB="0315e6e12b1231f39da8efc060b8e02cbf0a53d0a43b752c03ff0aa6dc653661f2e5caa11a4fd5c266aa822f1b4f67b8cfa75918920f154b6ea7eefc468666610618e087d489ea8573c9ab46dd235ce4ab8d08c06cda1eb81b9c584b33e71393824f16a5c9b1e2bdbf9776202a3650ca5cafbfdfe822d6e1ec0f275b24b42d198ebea998d8c2b6c27dae52ee39f36bba84599be00950a2394817db109f0a162bba482fdbb93902ed925c6462d6069dbe3f32b751e4e3edbc28abcd5b89d615a86a530fa16a486aa77589da18115ab824da6cc7b47da2105e97e6353ef1fca6f3"], 0x28}, 0x1, 0x0, 0x0, 0x20044484}, 0x1)
r9 = syz_open_dev$video(&(0x7f0000000000), 0x10001, 0xa0000)
ioctl$VIDIOC_S_FBUF(r9, 0x4030560b, &(0x7f00000000c0)={0xb1, 0x25, 0x0, {0x4, 0x6, 0x32314d59, 0x1, 0x5, 0x6, 0x8}})
ioctl$XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000002240)={0xffffffffffffffff, 0x0, 0x406041, &(0x7f0000002180)={@align=0x6, {0xfff9, 0x5, 0x5a08, 0xe2}}, 0x4, 0x0, 0x0}) (async)
ioctl$XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f0000002240)={<r10=>0xffffffffffffffff, 0x0, 0x406041, &(0x7f0000002180)={@align=0x6, {0xfff9, 0x5, 0x5a08, 0xe2}}, 0x4, 0x0, 0x0})
sendmsg$NL80211_CMD_CONNECT(r10, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, r1, 0x10, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, @random=0x15b8}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x10, {0x0, 0x0, 0x2, 0x8}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x41) (async)
sendmsg$NL80211_CMD_CONNECT(r10, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, r1, 0x10, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, @random=0x15b8}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x10, {0x0, 0x0, 0x2, 0x8}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x41)
r11 = syz_open_dev$sndpcmp(&(0x7f00000004c0), 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r10, 0xc0505405, &(0x7f0000000400)={{0x0, 0x1, 0x64d, 0x2, 0x4}, 0xffff, 0x3294, 0x1})
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
r12 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r12, 0x6, 0x4, &(0x7f0000000800)=0xffffffc0, 0x4)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_read_tx_power={{0x6}, {0x8, 0xc8, 0x3}}}}, 0xa)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r11, 0xc0844123, &(0x7f0000002180))

95.787509ms ago: executing program 8 (id=2816):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x9, 0x866c0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$XFS_IOC_START_COMMIT(r1, 0x80585882, &(0x7f00000002c0)={<r2=>0xffffffffffffffff}) (async)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000003c0)={'ip6tnl0\x00', &(0x7f0000000340)={'ip6tnl0\x00', <r3=>0x0, 0x2f, 0xf, 0x3, 0x5, 0x40, @private2, @loopback, 0x20, 0x40, 0x6, 0x80000000}})
bind$xdp(r2, &(0x7f00000004c0)={0x2c, 0x0, r3, 0x15, r0}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'wg0\x00', <r4=>0x0})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32=r4], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r6 = accept$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000500)=0x1c)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000540)={'wlan1\x00'}) (async)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r5, r5, 0x2f, 0x0, @void}, 0x10) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRESHEX, @ANYRES64=r5, @ANYRESDEC=r5, @ANYRES32=r5, @ANYRESOCT=r5, @ANYBLOB="5d855cdf809629f27a54b8f7efcdcb123bff4059be41ae16c07a329c0885bd8c89b5ba643b477f49f558b7f08de0fdfbf173404063bbd898a118a60c93cbe9367083118cf04bbd28f81514c8d1b0a2536b0bc39cc16b74081c0e7d7c792822c5fbdf8c992a705e95aada38bb565b2de7420987015701502e1ab460075728f0bf5cc65ca9677a820e8dd674ffbc1bd7e5a2e168ab5bc4f19f4df911900be1e55f30daa86e94195481a04b7074013a1ac2f113540782db289d47a48a4fe8a249e7c0fa14ebfeb7829a2480bb9cf1e0425d82f1075ee28feeb6066d0a50182a2e0b7fb5612811f16707ff878b79d3"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)

0s ago: executing program 8 (id=2817):
r0 = userfaultfd(0x1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f00000000c0)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000180)={@hyper})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, &(0x7f00000001c0)={&(0x7f00000009c0)={{@host}, {@hyper, 0x304}, 0x400, "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"}, 0x418, 0xb83})
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
lseek(r0, 0x2800000000, 0x3)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0xc058534b, &(0x7f00000000c0)={0x80000001, 0x4, 0xfffffffb, 0x7, 0x3, 0x100})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x2)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r3, &(0x7f0000000600)={0x50, 0x0, r4, {0x7, 0x2b, 0x10, 0x1c20040, 0x0, 0x0, 0x1, 0x1}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0xfffffffffffffff6, 0xffffffffffffffff, {0xfffffffffffffffe, 0x0, 0x0, 0x8, 0x80002, 0x5, {0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x6000, 0xb, 0x0, 0x0, 0x800000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x10010000000005, 0x1, 0xd04, 0xfffffffffffffffc, 0x4282000, 0x100000, {0x4, 0xa, 0xfffffffffffffffd, 0x2, 0x4, 0x28be, 0x4, 0x7, 0x4, 0x2000, 0x8, r5, r6, 0xf0ee, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x1802, 0x40)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0xc018937b, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000006, 0x200000005c832, 0xffffffffffffffff, 0x0)
read(r0, &(0x7f00000002c0)=""/153, 0x99)

0s ago: executing program 9 (id=2818):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r1 = syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x141000)
ioctl$FE_GET_PROPERTY(r1, 0x80106f53, &(0x7f00000016c0)={0x37, &(0x7f0000001600)=[{0x9, '\x00', @st={0x4, [{0x2, @svalue=0x5}, {0x1, @uvalue=0x8}, {0x2, @svalue=0x4}, {0xfffffffffffffffe, @uvalue=0x9}]}, 0x3}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0x18000000000002a0, 0x7ee, 0x0, &(0x7f0000000e80)="b9e403c6631e39495aa05dc7cf1c", 0x0, 0x7ab, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x21, 0x2}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0500000004000000080000000b00000000000000", @ANYRES32, @ANYBLOB="ffffffffff"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x5, 0x8, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000140)='GPL\x00', 0x6}, 0x94)
r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000580)=""/128, 0x80}], 0x1, 0x12e, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000000), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

[T14400] overlayfs: failed lookup in lower (newroot/336, name='file0', err=-40): overlapping layers
[  250.295688][T14400] overlayfs: failed lookup in lower (newroot/336, name='file0', err=-40): overlapping layers
[  250.299347][T14400] overlayfs: failed lookup in lower (newroot/336, name='file0', err=-40): overlapping layers
[  250.579911][T14421] usbtmc 5-1:16.0: stb usb_control_msg returned -32
[  250.584290][T10241] usb 5-1: USB disconnect, device number 36
[  250.590249][T14421] netlink: 'syz.6.2152': attribute type 4 has an invalid length.
[  250.661506][   T40] audit: type=1400 audit(1780760377.962:21470): avc:  denied  { write } for  pid=14422 comm="syz.5.2163" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  250.663738][T14423] netfs: Duplicate cookie detected
[  250.668681][   T40] audit: type=1400 audit(1780760377.962:21471): avc:  denied  { write } for  pid=14422 comm="syz.5.2163" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  250.670108][T14423] netfs: O-cookie c=0000001e [fl=4008 na=0 nA=0 s=-]
[  250.678829][T14423] netfs: O-cookie V=0000003a [9p,syz,]
[  250.680453][T14423] netfs: O-key=[8] '3305580400000000'
[  250.682077][T14423] netfs: N-cookie c=0000001f [fl=8 na=0 nA=0 s=-]
[  250.684017][T14423] netfs: N-cookie V=0000003a [9p,syz,]
[  250.685742][T14423] netfs: N-key=[8] '3305580400000000'
[  250.696293][T14423] fuse: Bad value for 'group_id'
[  250.697824][T14423] fuse: Bad value for 'group_id'
[  251.294392][   T62] Bluetooth: hci5: unknown advertising packet type: 0x82
[  251.294443][   T62] Bluetooth: hci5: Malformed LE Event: 0x02
[  251.294644][T14431] xt_hashlimit: size too large, truncated to 1048576
[  251.436224][T14437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2168'.
[  251.515876][T14441] veth0_to_team: entered promiscuous mode
[  251.519128][T14441] veth0_to_team: left promiscuous mode
[  251.887606][ T6461] net_ratelimit: 1 callbacks suppressed
[  251.887617][ T6461] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  251.904314][T14447] team0 (unregistering): Port device team_slave_0 removed
[  251.908603][ T5884] usb 5-1: new full-speed USB device number 37 using dummy_hcd
[  251.916000][T14447] team0 (unregistering): Port device team_slave_1 removed
[  252.014757][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  252.069172][ T5884] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  252.075550][ T5884] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  252.079603][ T5884] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  252.082473][ T5884] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.302010][ T5884] usb 5-1: usb_control_msg returned -32
[  252.303792][ T5884] usbtmc 5-1:16.0: can't read capabilities
[  252.821551][ T5843] usb 11-1: USB disconnect, device number 10
[  252.980429][   T40] audit: type=1400 audit(1780760380.133:21472): avc:  denied  { ioctl } for  pid=14463 comm="syz.6.2178" path="socket:[68878]" dev="sockfs" ino=68878 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  253.094389][ T6461] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.807262][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.818227][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.822503][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.825333][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.827976][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.830700][T14477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.223407][   T40] audit: type=1326 audit(1780760381.294:21473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.5.2187" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe39b39ce59 code=0x0
[  254.313832][ T6462] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.522848][   T40] audit: type=1400 audit(1780760381.574:21474): avc:  denied  { read } for  pid=14506 comm="syz.5.2192" laddr=172.20.20.170 lport=50895 faddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  254.902621][   T39] usb 5-1: USB disconnect, device number 37
[  255.285622][   T39] usb 5-1: new low-speed USB device number 38 using dummy_hcd
[  255.412848][T14546] loop4: detected capacity change from 0 to 2640
[  255.418764][T14546] buffer_io_error: 188 callbacks suppressed
[  255.418773][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.427536][ T5757] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.433562][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.438341][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.442260][ T5757] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.446672][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.450453][ T5757] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.453491][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.457048][T14546] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.462149][ T5757] Buffer I/O error on dev loop4, logical block 0, async page read
[  255.465328][T14546] ldm_validate_partition_table(): Disk read failed.
[  255.468424][T14546] Dev loop4: unable to read RDB block 0
[  255.470913][T14546]  loop4: unable to read partition table
[  255.475599][T14546] loop_reread_partitions: partition scan of loop4 (3Ÿ¾‚³˜) failed (rc=-5)
[  255.478999][   T39] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  255.481788][   T39] usb 5-1: config 0 has no interface number 0
[  255.483655][   T39] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  255.487131][   T39] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  255.490571][   T39] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  255.493654][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.499186][   T39] usb 5-1: config 0 descriptor??
[  255.501836][T14532] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  255.510861][   T39] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  255.795913][  T844] usb 5-1: USB disconnect, device number 38
[  256.203760][T14459] usb 11-1: new full-speed USB device number 11 using dummy_hcd
[  256.365817][T14459] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  256.369405][T14459] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  256.374546][T14459] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  256.378143][T14459] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.600895][T14459] usb 11-1: usb_control_msg returned -32
[  256.603305][T14459] usbtmc 11-1:16.0: can't read capabilities
[  256.780408][  T844] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  256.951695][  T844] usb 10-1: Using ep0 maxpacket: 8
[  256.957664][  T844] usb 10-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  256.964764][  T844] usb 10-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  256.973584][  T844] usb 10-1: config 0 interface 0 has no altsetting 0
[  256.978747][  T844] usb 10-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  256.982315][  T844] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.988654][  T844] usb 10-1: config 0 descriptor??
[  257.011995][T14577] fuse: Bad value for 'fd'
[  257.422235][  T844] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  257.427758][  T844] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  257.430428][  T844] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  257.432842][  T844] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  257.435004][  T844] mcp2221 0003:04D8:00DD.000C: unknown main item tag 0x0
[  257.437559][  T844] mcp2221 0003:04D8:00DD.000C: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0
[  257.634854][  T844] usb 10-1: USB disconnect, device number 16
[  257.891973][ T6478] net_ratelimit: 6 callbacks suppressed
[  257.891991][ T6478] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.276460][T14586] picdev_read: 9 callbacks suppressed
[  258.276478][T14586] kvm: pic: non byte read
[  258.281716][T14586] kvm: pic: non byte read
[  258.285206][T14586] kvm: pic: non byte read
[  258.288834][T14586] kvm: pic: non byte read
[  258.294177][T14586] kvm: pic: non byte read
[  258.297342][T14586] kvm: pic: single mode not supported
[  258.297634][T14586] kvm: pic: non byte read
[  258.302533][T14586] kvm: pic: single mode not supported
[  258.302542][T14586] kvm: pic: level sensitive irq not supported
[  258.304817][T14586] kvm: pic: non byte read
[  258.310127][T14586] kvm: pic: non byte read
[  258.313162][T14586] kvm: pic: non byte read
[  258.316136][T14586] kvm: pic: non byte read
[  258.324296][T14586] kvm: pic: single mode not supported
[  258.324305][T14586] kvm: pic: level sensitive irq not supported
[  258.332914][T14591] gre1: entered promiscuous mode
[  258.498053][T14594] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  258.522590][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.965206][T14614] FAULT_INJECTION: forcing a failure.
[  258.965206][T14614] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.969824][T14614] CPU: 2 UID: 0 PID: 14614 Comm: syz.5.2228 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  258.969844][T14614] Tainted: [L]=SOFTLOCKUP
[  258.969848][T14614] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  258.969854][T14614] Call Trace:
[  258.969858][T14614]  <TASK>
[  258.969863][T14614]  dump_stack_lvl+0x100/0x190
[  258.969879][T14614]  should_fail_ex.cold+0x5/0xa
[  258.969894][T14614]  _copy_from_user+0x2e/0xd0
[  258.969908][T14614]  memdup_user+0x6b/0xe0
[  258.969920][T14614]  strndup_user+0x78/0xe0
[  258.969930][T14614]  __do_sys_fsconfig+0x276/0xcb0
[  258.969943][T14614]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  258.969953][T14614]  ? fput+0x79/0x100
[  258.969970][T14614]  ? rcu_is_watching+0x12/0xc0
[  258.969988][T14614]  do_syscall_64+0x115/0x870
[  258.970001][T14614]  ? clear_bhb_loop+0x40/0x90
[  258.970014][T14614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.970025][T14614] RIP: 0033:0x7fe39b39ce59
[  258.970034][T14614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  258.970044][T14614] RSP: 002b:00007fe39c197028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  258.970055][T14614] RAX: ffffffffffffffda RBX: 00007fe39b615fa0 RCX: 00007fe39b39ce59
[  258.970061][T14614] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 0000000000000003
[  258.970067][T14614] RBP: 00007fe39c197090 R08: 0000000000000000 R09: 0000000000000000
[  258.970074][T14614] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  258.970080][T14614] R13: 00007fe39b616038 R14: 00007fe39b615fa0 R15: 00007ffe87df66d8
[  258.970093][T14614]  </TASK>
[  259.062352][T14616] veth0_to_team: entered promiscuous mode
[  259.065142][T14616] veth0_to_team: left promiscuous mode
[  259.078385][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.161646][ T6063] usb 11-1: USB disconnect, device number 11
[  259.189291][T14619] netlink: 71 bytes leftover after parsing attributes in process `syz.6.2233'.
[  259.236532][T14619] program syz.6.2233 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.247771][T14627] netlink: 'syz.5.2234': attribute type 1 has an invalid length.
[  259.261559][T14627] 8021q: adding VLAN 0 to HW filter on device bond6
[  259.308978][T14632] fuse: Unknown parameter '’À^º–Ì:…ߘ8ñ^³~n'
[  259.315901][T14632] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2236'.
[  259.449601][T14641] veth0_to_team: entered promiscuous mode
[  259.460428][T14641] veth0_to_team: left promiscuous mode
[  259.504008][T14639] kvm: pic: level sensitive irq not supported
[  259.511201][T14639] kvm: pic: level sensitive irq not supported
[  259.515536][T14639] kvm: pic: single mode not supported
[  259.517999][T14639] kvm: pic: level sensitive irq not supported
[  259.524571][T14639] kvm: pic: level sensitive irq not supported
[  259.547970][   T40] audit: type=1400 audit(1780760386.272:21475): avc:  denied  { write } for  pid=14648 comm="syz.0.2242" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  259.554403][T14649] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2242'.
[  259.559042][   T40] audit: type=1400 audit(1780760386.291:21476): avc:  denied  { write } for  pid=14648 comm="syz.0.2242" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  259.570656][   T40] audit: type=1400 audit(1780760386.291:21477): avc:  denied  { create } for  pid=14648 comm="syz.0.2242" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  259.733438][T14653] vlan0: entered promiscuous mode
[  259.796401][   T40] audit: type=1400 audit(1780760386.506:21478): avc:  denied  { setattr } for  pid=14661 comm="syz.6.2246" name="sg0" dev="devtmpfs" ino=722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  260.006978][T14668] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2249'.
[  260.018841][T14668] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2249'.
[  260.253585][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  260.261498][T14674] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2251'.
[  260.327610][T14679] netlink: 'syz.5.2252': attribute type 83 has an invalid length.
[  260.332347][T14679] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  260.415639][T14685] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2255'.
[  260.499598][   T40] audit: type=1400 audit(1780760387.180:21479): avc:  denied  { read } for  pid=14688 comm="syz.6.2256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  260.622986][T14702] FAULT_INJECTION: forcing a failure.
[  260.622986][T14702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  260.626988][T14702] CPU: 1 UID: 0 PID: 14702 Comm: syz.5.2259 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  260.627005][T14702] Tainted: [L]=SOFTLOCKUP
[  260.627008][T14702] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  260.627014][T14702] Call Trace:
[  260.627018][T14702]  <TASK>
[  260.627022][T14702]  dump_stack_lvl+0x100/0x190
[  260.627038][T14702]  should_fail_ex.cold+0x5/0xa
[  260.627053][T14702]  _copy_from_user+0x2e/0xd0
[  260.627067][T14702]  memdup_user+0x6b/0xe0
[  260.627077][T14702]  strndup_user+0x78/0xe0
[  260.627088][T14702]  __do_sys_fsconfig+0x7ec/0xcb0
[  260.627100][T14702]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  260.627111][T14702]  ? fput+0x79/0x100
[  260.627128][T14702]  ? rcu_is_watching+0x12/0xc0
[  260.627145][T14702]  do_syscall_64+0x115/0x870
[  260.627159][T14702]  ? clear_bhb_loop+0x40/0x90
[  260.627172][T14702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.627182][T14702] RIP: 0033:0x7fe39b39ce59
[  260.627192][T14702] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.627202][T14702] RSP: 002b:00007fe39c197028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  260.627213][T14702] RAX: ffffffffffffffda RBX: 00007fe39b615fa0 RCX: 00007fe39b39ce59
[  260.627219][T14702] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 0000000000000003
[  260.627225][T14702] RBP: 00007fe39c197090 R08: 0000000000000000 R09: 0000000000000000
[  260.627231][T14702] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  260.627237][T14702] R13: 00007fe39b616038 R14: 00007fe39b615fa0 R15: 00007ffe87df66d8
[  260.627250][T14702]  </TASK>
[  260.728323][T14707] veth0_to_team: entered promiscuous mode
[  260.734082][T14707] veth0_to_team: left promiscuous mode
[  261.028819][T14716] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2264'.
[  261.085261][T14713] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  261.461280][ T6474] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.604252][   T40] audit: type=1400 audit(1780760388.209:21480): avc:  denied  { mounton } for  pid=14749 comm="syz.6.2275" path="/file0" dev="ramfs" ino=70013 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  261.771613][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.034974][T14759] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2279'.
[  262.038520][T14759] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.047528][T14759] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.097108][T14761] xt_hashlimit: size too large, truncated to 1048576
[  262.157800][T14765] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.172535][T14764] veth0_to_team: entered promiscuous mode
[  262.191738][T14764] veth0_to_team: left promiscuous mode
[  262.239568][   T40] audit: type=1400 audit(1780760388.799:21481): avc:  denied  { execheap } for  pid=14773 comm="syz.3.2284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  262.318280][T14784] netlink: 'syz.5.2287': attribute type 1 has an invalid length.
[  262.321040][T14784] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2287'.
[  262.679719][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.468623][T14809] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  263.480591][ T6063] usb 11-1: new high-speed USB device number 12 using dummy_hcd
[  263.547066][   T40] audit: type=1400 audit(1780760390.025:21482): avc:  denied  { watch } for  pid=14810 comm="syz.5.2301" path="/proc/1119" dev="proc" ino=69548 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  263.634403][T14817] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  263.662227][ T6063] usb 11-1: Using ep0 maxpacket: 8
[  263.665414][ T6063] usb 11-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  263.668288][ T6063] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.691539][ T6063] pvrusb2: Hardware description: Terratec Grabster AV400
[  263.704954][ T6063] pvrusb2: **********
[  263.706727][ T6063] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  263.712143][ T6063] pvrusb2: Important functionality might not be entirely working.
[  263.717008][ T6063] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  263.726281][ T6063] pvrusb2: **********
[  263.886872][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.919942][ T2516] pvrusb2: Invalid write control endpoint
[  263.923512][T14832] veth0_to_team: entered promiscuous mode
[  263.930785][T14832] veth0_to_team: left promiscuous mode
[  264.001557][ T2516] pvrusb2: Invalid write control endpoint
[  264.011268][ T2516] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  264.020738][ T2516] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  264.023707][ T2516] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  264.027950][ T2516] pvrusb2: Device being rendered inoperable
[  264.036622][ T2516] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  264.039716][ T2516] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  264.047129][ T2516] pvrusb2: Attached sub-driver cx25840
[  264.049142][ T2516] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  264.053802][ T2516] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  264.132614][T14805] pvrusb2: Attempted to execute control transfer when device not ok
[  264.148254][  T844] usb 11-1: USB disconnect, device number 12
[  264.349875][T14854] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  264.406526][T14859] [U] 
[  264.424096][T14863] 9pnet_virtio: no channels available for device syz
[  264.426669][T14863] 9pnet_virtio: no channels available for device syz
[  264.429493][T14863] 9pnet_virtio: no channels available for device syz
[  264.432918][T14863] 9pnet_virtio: no channels available for device syz
[  264.436048][T14863] 9pnet_virtio: no channels available for device syz
[  264.438958][T14863] 9pnet_virtio: no channels available for device syz
[  264.441718][T14863] 9pnet_virtio: no channels available for device syz
[  264.445021][T14863] 9pnet_virtio: no channels available for device syz
[  264.447796][T14863] 9pnet_virtio: no channels available for device syz
[  264.450190][T14863] 9pnet_virtio: no channels available for device syz
[  264.453414][T14863] 9pnet_virtio: no channels available for device syz
[  264.456359][T14863] 9pnet_virtio: no channels available for device syz
[  264.459211][T14863] 9pnet_virtio: no channels available for device syz
[  264.462079][T14863] 9pnet_virtio: no channels available for device syz
[  264.464848][T14863] 9pnet_virtio: no channels available for device syz
[  264.467751][T14863] 9pnet_virtio: no channels available for device syz
[  264.470612][T14863] 9pnet_virtio: no channels available for device syz
[  264.473804][T14863] 9pnet_virtio: no channels available for device syz
[  264.476679][T14863] 9pnet_virtio: no channels available for device syz
[  264.479637][T14863] 9pnet_virtio: no channels available for device syz
[  264.482654][T14863] 9pnet_virtio: no channels available for device syz
[  264.485821][T14863] 9pnet_virtio: no channels available for device syz
[  264.488417][T14863] 9pnet_virtio: no channels available for device syz
[  264.491404][T14863] 9pnet_virtio: no channels available for device syz
[  264.494356][T14863] 9pnet_virtio: no channels available for device syz
[  264.497992][T14863] 9pnet_virtio: no channels available for device syz
[  264.500412][T14863] 9pnet_virtio: no channels available for device syz
[  264.502697][T14863] 9pnet_virtio: no channels available for device syz
[  264.505200][T14863] 9pnet_virtio: no channels available for device syz
[  264.507646][T14863] 9pnet_virtio: no channels available for device syz
[  264.510012][T14863] 9pnet_virtio: no channels available for device syz
[  264.512317][T14863] 9pnet_virtio: no channels available for device syz
[  264.514573][T14863] 9pnet_virtio: no channels available for device syz
[  264.516860][T14863] 9pnet_virtio: no channels available for device syz
[  264.519236][T14863] 9pnet_virtio: no channels available for device syz
[  264.521761][T14863] 9pnet_virtio: no channels available for device syz
[  264.524005][T14863] 9pnet_virtio: no channels available for device syz
[  264.526515][T14863] 9pnet_virtio: no channels available for device syz
[  264.529924][T14863] 9pnet_virtio: no channels available for device syz
[  264.532194][T14863] 9pnet_virtio: no channels available for device syz
[  264.534388][T14863] 9pnet_virtio: no channels available for device syz
[  264.536611][T14863] 9pnet_virtio: no channels available for device syz
[  264.538858][T14863] 9pnet_virtio: no channels available for device syz
[  264.541303][T14863] 9pnet_virtio: no channels available for device syz
[  264.543626][T14863] 9pnet_virtio: no channels available for device syz
[  264.545850][T14863] 9pnet_virtio: no channels available for device syz
[  264.548055][T14863] 9pnet_virtio: no channels available for device syz
[  264.550326][T14863] 9pnet_virtio: no channels available for device syz
[  264.552607][T14863] 9pnet_virtio: no channels available for device syz
[  264.554893][T14863] 9pnet_virtio: no channels available for device syz
[  264.557106][T14863] 9pnet_virtio: no channels available for device syz
[  264.559317][T14863] 9pnet_virtio: no channels available for device syz
[  264.561623][T14863] 9pnet_virtio: no channels available for device syz
[  264.563873][T14863] 9pnet_virtio: no channels available for device syz
[  264.566140][T14863] 9pnet_virtio: no channels available for device syz
[  264.568311][T14863] 9pnet_virtio: no channels available for device syz
[  264.570502][T14863] 9pnet_virtio: no channels available for device syz
[  264.572677][T14863] 9pnet_virtio: no channels available for device syz
[  264.574944][T14863] 9pnet_virtio: no channels available for device syz
[  264.577231][T14863] 9pnet_virtio: no channels available for device syz
[  264.579431][T14863] 9pnet_virtio: no channels available for device syz
[  264.581774][T14863] 9pnet_virtio: no channels available for device syz
[  264.584314][T14863] 9pnet_virtio: no channels available for device syz
[  264.587562][T14863] 9pnet_virtio: no channels available for device syz
[  264.869922][ T6063] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  265.010015][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.040720][ T6063] usb 5-1: Using ep0 maxpacket: 8
[  265.044002][ T6063] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  265.045639][T14879] syzkaller0: entered promiscuous mode
[  265.048243][ T6063] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  265.050233][T14879] syzkaller0: entered allmulticast mode
[  265.053854][ T6063] usb 5-1: config 0 interface 0 has no altsetting 0
[  265.058435][ T6063] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  265.062572][ T6063] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.069195][ T6063] usb 5-1: config 0 descriptor??
[  265.096387][ T6478] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.284951][T14884] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  265.329107][   T62] Bluetooth: hci2: unexpected event 0x07 length: 4 < 255
[  265.362513][T14891] veth0_to_team: entered promiscuous mode
[  265.371497][T14891] veth0_to_team: left promiscuous mode
[  265.508702][ T6063] usbhid 5-1:0.0: can't add hid device: -71
[  265.515562][ T6063] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  265.531100][ T6063] usb 5-1: USB disconnect, device number 39
[  265.556093][T14895] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  265.745903][T14904] __nla_validate_parse: 1 callbacks suppressed
[  265.755911][T14904] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2333'.
[  265.760515][T14904] Unknown options in mask b7f2
[  266.115856][T14938] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  266.126546][T14940] comedi comedi3: multiq3: I/O port conflict (0x100,16)
[  266.191625][T14948] bridge1: entered allmulticast mode
[  266.218484][T14952] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2352'.
[  266.231972][T14952] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2352'.
[  266.232536][   T40] audit: type=1400 audit(1780760392.533:21483): avc:  denied  { getopt } for  pid=14951 comm="syz.5.2352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  266.293079][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.321575][T14970] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2356'.
[  266.346521][ T6478] nci: nci_rf_intf_activated_ntf_packet: unsupported rf_interface 0x4
[  266.378670][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.781025][T15001] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2366'.
[  266.784708][T15001] netlink: 'syz.6.2366': attribute type 1 has an invalid length.
[  266.788331][T15001] nbd: error processing sock list
[  266.801895][T15002] netlink: 'syz.6.2366': attribute type 1 has an invalid length.
[  266.810602][T15002] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  266.815145][T15001] kAFS: unable to lookup cell 'syz0'
[  266.858504][T15007] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2367'.
[  266.862290][T15007] openvswitch: netlink: Flow key attr not present in new flow.
[  266.865887][T15007] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2367'.
[  266.870274][T15008] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2367'.
[  267.195451][T15010] picdev_read: 14 callbacks suppressed
[  267.195463][T15010] kvm: pic: non byte read
[  267.201394][T15010] kvm: pic: non byte read
[  267.207490][T15010] kvm: pic: single mode not supported
[  267.207504][T15010] kvm: pic: level sensitive irq not supported
[  267.211052][T15010] kvm: pic: non byte read
[  267.222794][T15010] kvm: pic: single mode not supported
[  267.223209][T15010] kvm: pic: non byte read
[  267.228141][T15010] kvm: pic: single mode not supported
[  267.228438][T15010] kvm: pic: non byte read
[  267.233810][T15010] kvm: pic: non byte read
[  267.243683][T15010] kvm: pic: level sensitive irq not supported
[  267.244494][T15010] kvm: pic: non byte read
[  267.250226][T15010] kvm: pic: non byte read
[  267.254116][T15010] kvm: pic: level sensitive irq not supported
[  267.254413][T15010] kvm: pic: non byte read
[  267.259880][T15010] kvm: pic: level sensitive irq not supported
[  267.260365][T15010] kvm: pic: non byte read
[  267.267281][T15010] kvm: pic: level sensitive irq not supported
[  267.269236][T15010] kvm: pic: single mode not supported
[  267.273068][T15010] kvm: pic: level sensitive irq not supported
[  267.280759][T15010] kvm: pic: level sensitive irq not supported
[  267.286483][T15010] kvm: pic: single mode not supported
[  267.288350][T15010] kvm: pic: level sensitive irq not supported
[  267.298580][T15010] kvm: pic: single mode not supported
[  267.323626][T15010] kvm: pic: level sensitive irq not supported
[  267.340974][T15010] kvm: pic: single mode not supported
[  267.353644][T15010] kvm: pic: single mode not supported
[  267.369701][T15010] kvm: pic: level sensitive irq not supported
[  267.387760][T15010] kvm: pic: single mode not supported
[  267.404327][T15010] kvm: pic: single mode not supported
[  267.416248][ T5739] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  267.431458][ T5739] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  267.439640][ T5739] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  267.444587][ T5739] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  267.448436][ T5739] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  267.500896][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.699096][T15013] lo speed is unknown, defaulting to 1000
[  267.886004][T15013] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.888869][T15013] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.891098][T15013] bridge_slave_0: entered allmulticast mode
[  267.893910][T15013] bridge_slave_0: entered promiscuous mode
[  267.898682][T15013] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.901513][T15013] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.903844][T15013] bridge_slave_1: entered allmulticast mode
[  267.906988][T15013] bridge_slave_1: entered promiscuous mode
[  267.921506][T15013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  267.926397][T15013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  267.942184][T15013] team0: Port device team_slave_0 added
[  267.946086][T15013] team0: Port device team_slave_1 added
[  267.961845][T15013] batman_adv: batadv0: Adding interface: batadv_slave_0
[  267.964085][T15013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  267.971999][T15013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  267.976166][T15013] batman_adv: batadv0: Adding interface: batadv_slave_1
[  267.978330][T15013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  267.986071][T15013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  268.029971][T15013] hsr_slave_0: entered promiscuous mode
[  268.034258][T15013] hsr_slave_1: entered promiscuous mode
[  268.037265][T15013] debugfs: 'hsr0' already exists in 'hsr'
[  268.039571][T15013] Cannot create hsr debugfs directory
[  268.094669][T15059] veth0_to_team: entered promiscuous mode
[  268.097496][T15059] veth0_to_team: left promiscuous mode
[  268.187277][T15013] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  268.196129][T15013] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  268.199481][T15013] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  268.205194][T15013] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  268.208324][T15013] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  268.212820][T15013] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  268.216362][T15013] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  268.221612][T15013] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  268.268382][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.270611][T15013] 8021q: adding VLAN 0 to HW filter on device bond0
[  268.299516][T15013] 8021q: adding VLAN 0 to HW filter on device team0
[  268.312831][ T6468] bridge0: port 1(bridge_slave_0) entered blocking state
[  268.315617][ T6468] bridge0: port 1(bridge_slave_0) entered forwarding state
[  268.332560][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  268.334669][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  268.727539][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.780864][T15013] 8021q: adding VLAN 0 to HW filter on device batadv0
[  268.788391][T15098] veth0_to_team: entered promiscuous mode
[  268.792241][T15098] veth0_to_team: left promiscuous mode
[  268.985941][T15111] comedi comedi3: multiq3: I/O port conflict (0x100,16)
[  269.031492][T15013] veth0_vlan: entered promiscuous mode
[  269.037062][T15013] veth1_vlan: entered promiscuous mode
[  269.037917][   T40] audit: type=1400 audit(1780760395.162:21484): avc:  denied  { read } for  pid=15106 comm="syz.5.2394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  269.054415][T15013] veth0_macvtap: entered promiscuous mode
[  269.061803][T15013] veth1_macvtap: entered promiscuous mode
[  269.080186][T15013] batman_adv: batadv0: Interface activated: batadv_slave_0
[  269.088043][T15013] batman_adv: batadv0: Interface activated: batadv_slave_1
[  269.097457][ T6467] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  269.104354][ T6467] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  269.118047][ T6467] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  269.124167][ T6467] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  269.235417][ T6468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  269.239663][ T6468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  269.266357][ T6474] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  269.269902][ T6474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  269.289301][ T1436] ieee802154 phy0 wpan0: encryption failed: -22
[  269.402397][T15127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2397'.
[  269.406434][T15127] openvswitch: netlink: Flow actions attr not present in new flow.
[  269.629462][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.635874][ T5739] Bluetooth: hci3: command tx timeout
[  269.692293][T15139] syz.3.2401 (15139) used obsolete PPPIOCDETACH ioctl
[  269.699877][   T40] audit: type=1400 audit(1780760395.780:21485): avc:  denied  { map } for  pid=15140 comm="syz.7.2402" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  269.918155][ T6468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.279901][T15162] Bluetooth: hci0: Opcode 0x080f failed: -22
[  270.355733][T15169] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  270.411086][T15178] 9p: Bad value for 'rfdno'
[  271.110693][ T6474] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.237970][   T40] audit: type=1400 audit(1780760397.221:21486): avc:  denied  { map } for  pid=15214 comm="syz.7.2425" path="socket:[74319]" dev="sockfs" ino=74319 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  271.245562][   T40] audit: type=1400 audit(1780760397.221:21487): avc:  denied  { read accept } for  pid=15214 comm="syz.7.2425" path="socket:[74319]" dev="sockfs" ino=74319 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  271.506005][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.858568][ T5739] Bluetooth: hci3: command tx timeout
[  271.975719][T15228] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  272.268169][T15242] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1795 sclass=netlink_route_socket pid=15242 comm=syz.5.2435
[  272.331362][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.416608][T15252] Bluetooth: hci0: Opcode 0x080f failed: -22
[  272.450614][   T62] Bluetooth: hci2: Opcode 0x206a failed: -110
[  272.453400][ T5739] Bluetooth: hci2: command 0x206a tx timeout
[  272.543903][  T844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.723036][   T40] audit: type=1400 audit(1780760398.606:21488): avc:  denied  { mounton } for  pid=15265 comm="syz.7.2444" path="/18/file0" dev="tmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  272.723261][T15266] bad cache= option: none 192
[  272.723261][T15266] nr_mlock 0
[  272.723261][T15266] nr_zspages 1280
[  272.723261][T15266] nr_free_cma 0
[  272.723261][T15266] numa_hit 1787750
[  272.723261][T15266] numa_miss 371721
[  272.723261][T15266] numa_foreign 371721
[  272.723261][T15266] numa_interleave 8729
[  272.723261][T15266] numa_local 1781508
[  272.723261][T15266] numa_other 377963
[  272.723261][T15266] nr_inactive_anon 8538
[  272.723261][T15266] nr_active_anon 30390
[  272.723261][T15266] nr_inactive_file 10357
[  272.723261][T15266] nr_active_file 16569
[  272.723261][T15266] nr_unevictable 1768
[  272.723261][T15266] nr_slab_reclaimable 9539
[  272.723261][T15266] nr_slab_unreclaimable 95366
[  272.723261][T15266] nr_isolated_anon 0
[  272.723261][T15266] nr_isolated_file 0
[  272.723261][T15266] workingset_nodes 110
[  272.723261][T15266] workingset_refault_anon 447
[  272.723261][T15266] workingset_refault_file 3554
[  272.723261][T15266] workingset_activate_anon 442
[  272.723261][T15266] workingset_activate_file 1931
[  272.723261][T15266] workingset_restore_anon 0
[  272.723261][T15266] workingset_restore_file 370
[  272.723261][T15266] workingset_nodereclaim 606
[  272.723261][T15266] nr_anon_pages 12531
[  272.723261][T15266] nr_mapped 30175
[  272.723261][T15266] nr_file_pages 55255
[  272.723261][T15266] nr_dirty 192
[  272.723261][T15266] nr_writeback 0
[  272.723261][T15266] nr_shmem 27894
[  272.723261][T15266] nr_shmem_hugepages 0
[  272.723261][T15266] nr_shmem_pmdmapped 0
[  272.723261][T15266] nr_file_hugepages 0
[  272.723261][T15266] nr_file_pmdmapped 0
[  272.723261][T15266] nr_anon_transparent_hugepages 0
[  272.723261][T15266] nr_vmscan_write 12247
[  272.723261][T15266] nr_vmscan_immediate_reclaim 1531
[  272.723261][T15266] nr_dirtied 6715
[  272.723261][T15266] nr_written 6523
[  272.723261][T15266] nr_throttled_written 0
[  272.723261][T15266] nr_kernel_misc_reclaimable 0
[  272.723261][T15266] nr_foll_pin_acquired 27974
[  272.731084][T15266] CIFS: VFS: bad cache= option: none 192
[  272.731084][T15266] nr_mlock 0
[  272.731084][T15266] nr_zspages 1280
[  272.731084][T15266] nr_free_cma 0
[  272.731084][T15266] numa_hit 1787750
[  272.731084][T15266] numa_miss 371721
[  272.731084][T15266] numa_foreign 371721
[  272.731084][T15266] numa_interleave 8729
[  272.731084][T15266] numa_local 1781508
[  272.731084][T15266] numa_other 377963
[  272.731084][T15266] nr_inactive_anon 8538
[  272.731084][T15266] nr_active_anon 30390
[  272.731084][T15266] nr_inactive_file 10357
[  272.731084][T15266] nr_active_file 16569
[  272.731084][T15266] nr_unevictable 1768
[  272.731084][T15266] nr_slab_reclaimable 9539
[  272.731084][T15266] nr_slab_unreclaimable 95366
[  272.731084][T15266] nr_isolated_anon 0
[  272.731084][T15266] nr_isolated_file 0
[  272.731084][T15266] workingset_nodes 110
[  272.731084][T15266] workingset_refault_anon 447
[  272.731084][T15266] workingset_refault_file 3554
[  272.731084][T15266] workingset_activate_anon 442
[  272.731084][T15266] workingset_activate_file 1931
[  272.731084][T15266] workingset_restore_anon 0
[  272.731084][T15266] workingset_restore_file 370
[  272.731084][T15266] workingset_nodereclaim 606
[  272.731084][T15266] nr_anon_pages 12531
[  272.731084][T15266] nr_mapped 30175
[  272.731084][T15266] nr_file_pages 55255
[  272.731084][T15266] nr_dirty 192
[  272.731084][T15266] nr_writeback 0
[  272.731084][T15266] nr_shmem 27894
[  272.731084][T15266] nr_shmem_hugepages 0
[  272.731084][T15266] nr_shmem_pmdmapped 0
[  272.731084][T15266] nr_file_hugepages 0
[  272.731084][T15266] nr_file_pmdmapped 0
[  272.731084][T15266] nr_anon_transparent_hugepages 0
[  272.731084][T15266] nr_vmscan_write 12247
[  272.731084][T15266] nr_vmscan_immediate_reclaim 1531
[  272.731084][T15266] nr_dirtied 6715
[  272.731084][T15266] nr_written 6523
[  272.731084][T15266] nr_throttled_written 0
[  272.731084][T15266] nr_kernel_misc_reclaimable 0
[  272.731084][T15266] nr_foll_pin_acquired 27974
[  272.818294][   T40] audit: type=1400 audit(1780760398.700:21489): avc:  denied  { setattr } for  pid=15265 comm="syz.7.2444" name="file0" dev="tmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  272.824962][T15266] ieee802154 phy0 wpan0: encryption failed: -22
[  272.882972][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.985542][ T6474] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.103784][ T6474] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.124832][ T5739] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  273.129351][ T5739] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  273.130691][T10241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.138738][ T5739] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  273.145524][ T5739] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  273.148598][ T5739] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  273.182448][T15281] erspan0: entered promiscuous mode
[  273.217738][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.250475][ T6474] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.339452][ T6474] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.475474][T15277] lo speed is unknown, defaulting to 1000
[  273.576772][T15309] veth0_to_team: entered promiscuous mode
[  273.579709][T15309] veth0_to_team: left promiscuous mode
[  273.771226][ T6063] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  273.906892][T15319] netlink: 'syz.7.2460': attribute type 8 has an invalid length.
[  273.909990][T15319] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2460'.
[  273.942214][ T6063] usb 5-1: Using ep0 maxpacket: 32
[  273.946507][ T6063] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  273.949040][ T6063] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  273.952562][ T6063] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  273.956143][ T6063] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  273.961111][ T6063] usb 5-1: config 0 interface 0 has no altsetting 0
[  273.965703][ T6063] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  273.968665][ T6063] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  273.971211][ T6063] usb 5-1: Product: syz
[  273.972571][ T6063] usb 5-1: Manufacturer: syz
[  273.974033][ T6063] usb 5-1: SerialNumber: syz
[  273.977495][ T6063] usb 5-1: config 0 descriptor??
[  273.985209][ T6063] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  273.991593][ T6063] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  274.070680][   T62] Bluetooth: hci3: command tx timeout
[  274.253681][T15307] ldusb 5-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[  274.255162][ T6063] usb 5-1: USB disconnect, device number 40
[  274.255924][    C2] ldusb 5-1:0.0: usb_submit_urb failed (-19)
[  274.266836][ T6063] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  274.394447][ T6474] .` (unregistering): Released all slaves
[  274.403653][ T6474] bond0 (unregistering): Released all slaves
[  274.424809][T15329] syzkaller1: entered promiscuous mode
[  274.426978][T15329] syzkaller1: entered allmulticast mode
[  274.535717][ T6474] tipc: Left network mode
[  274.545929][T15277] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.551083][T15277] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.554635][T15277] bridge_slave_0: entered allmulticast mode
[  274.557392][T15277] bridge_slave_0: entered promiscuous mode
[  274.560587][T15277] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.562991][T15277] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.565342][T15277] bridge_slave_1: entered allmulticast mode
[  274.567940][T15277] bridge_slave_1: entered promiscuous mode
[  274.621669][T15341] veth0_to_team: entered promiscuous mode
[  274.627817][T15341] veth0_to_team: left promiscuous mode
[  274.654669][T15277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  274.668223][T15277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  274.696118][T15277] team0: Port device team_slave_0 added
[  274.699463][T15277] team0: Port device team_slave_1 added
[  274.712386][T15277] batman_adv: batadv0: Adding interface: batadv_slave_0
[  274.714542][T15277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  274.722314][T10241] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  274.723655][T15277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  274.729256][T15277] batman_adv: batadv0: Adding interface: batadv_slave_1
[  274.731350][T15277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  274.739227][T15277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  274.757004][  T844] net_ratelimit: 6 callbacks suppressed
[  274.757015][  T844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.766362][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.774617][T15277] hsr_slave_0: entered promiscuous mode
[  274.782028][T15277] hsr_slave_1: entered promiscuous mode
[  274.787375][T15277] debugfs: 'hsr0' already exists in 'hsr'
[  274.789207][T15277] Cannot create hsr debugfs directory
[  274.885717][T10241] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  274.895198][T10241] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  274.901167][T10241] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  274.910513][T10241] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  274.916488][T10241] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.942440][T10241] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  275.023751][T15277] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  275.034835][T15277] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  275.037589][T15277] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  275.058696][T15277] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  275.065593][T15277] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  275.071835][T15277] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  275.084818][T15277] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  275.109192][T15277] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  275.125614][T10241] snd-usb-audio 12-1:27.0: probe with driver snd-usb-audio failed with error -12
[  275.176790][T10241] usb 12-1: USB disconnect, device number 2
[  275.246063][T15277] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.258436][T15367] libceph: resolve '.‹R¯HÖe'ì»Ë /Ïâµüë1ýC¸ 
£~—1W–쯑ë¨eþxEA®ÁþeSb{~Rð' (ret=-3): failed
[  275.296225][T15277] 8021q: adding VLAN 0 to HW filter on device team0
[  275.304744][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.307736][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  275.326704][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.329500][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  275.337976][T15369] veth0_to_team: entered promiscuous mode
[  275.341500][T15369] veth0_to_team: left promiscuous mode
[  275.352943][   T62] Bluetooth: hci0: command tx timeout
[  275.448494][T15373] comedi comedi2: Cannot bond this driver to itself!
[  275.706800][T15390] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2476'.
[  275.807128][T15277] 8021q: adding VLAN 0 to HW filter on device batadv0
[  275.869327][ T5842] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.931185][ T6468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.944929][   T40] audit: type=1400 audit(1780760401.629:21490): avc:  denied  { ioctl } for  pid=15407 comm="syz.0.2480" path="user:[4026531837]" dev="nsfs" ino=4026531837 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  275.987990][T15409] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[  275.998823][T15409] netlink: 212348 bytes leftover after parsing attributes in process `syz.0.2480'.
[  276.039399][T15277] veth0_vlan: entered promiscuous mode
[  276.083542][T15277] veth1_vlan: entered promiscuous mode
[  276.088514][T15418] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2483'.
[  276.094079][T15418] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2483'.
[  276.097561][T15418] netlink: 'syz.7.2483': attribute type 14 has an invalid length.
[  276.100551][ T6474] hsr_slave_0: left promiscuous mode
[  276.102972][ T6474] hsr_slave_1: left promiscuous mode
[  276.123450][ T6474] veth1_macvtap: left promiscuous mode
[  276.126005][ T6474] veth0_macvtap: left promiscuous mode
[  276.129936][ T6474] veth1_vlan: left promiscuous mode
[  276.132416][ T6474] veth0_vlan: left promiscuous mode
[  276.293556][   T62] Bluetooth: hci3: command tx timeout
[  276.515697][ T6468] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  276.515843][T15418] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2483'.
[  276.521077][ T6468] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  276.529844][T15418] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2483'.
[  276.532895][ T6468] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  276.536510][ T6468] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  276.538993][T15418] netlink: 'syz.7.2483': attribute type 14 has an invalid length.
[  276.569158][T15277] veth0_macvtap: entered promiscuous mode
[  276.573280][T15277] veth1_macvtap: entered promiscuous mode
[  276.600028][T15277] batman_adv: batadv0: Interface activated: batadv_slave_0
[  276.609828][T15277] batman_adv: batadv0: Interface activated: batadv_slave_1
[  276.618808][ T6468] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  276.653247][ T6468] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  276.664418][ T6468] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  276.675175][ T6468] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  276.722690][T10241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.753370][T15433] loop9: detected capacity change from 0 to 524287871
[  276.831303][ T6468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  276.841515][ T6468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.910699][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  276.923496][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.966409][T14459] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  276.977350][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.009970][T15444] veth0_to_team: entered promiscuous mode
[  277.026401][T15444] veth0_to_team: left promiscuous mode
[  277.115722][   T40] audit: type=1400 audit(1780760402.714:21491): avc:  denied  { mounton } for  pid=15449 comm="syz.5.2494" path="/465/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  277.126850][ T6468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.138878][T14459] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  277.145718][T14459] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  277.154475][T14459] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  277.163014][T14459] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  277.169076][T14459] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.182370][T15452] netlink: 'syz.7.2495': attribute type 4 has an invalid length.
[  277.192098][T14459] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  277.197253][T15454] FAULT_INJECTION: forcing a failure.
[  277.197253][T15454] name failslab, interval 1, probability 0, space 0, times 0
[  277.209633][T15452] netlink: 'syz.7.2495': attribute type 4 has an invalid length.
[  277.216376][T15454] CPU: 3 UID: 0 PID: 15454 Comm: syz.5.2496 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.216402][T15454] Tainted: [L]=SOFTLOCKUP
[  277.216408][T15454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  277.216419][T15454] Call Trace:
[  277.216425][T15454]  <TASK>
[  277.216432][T15454]  dump_stack_lvl+0x100/0x190
[  277.216467][T15454]  should_fail_ex.cold+0x5/0xa
[  277.216492][T15454]  should_failslab+0xc2/0x120
[  277.216513][T15454]  __kmalloc_cache_noprof+0x7a/0x6f0
[  277.216537][T15454]  ? sctp_association_new+0xbb/0x2990
[  277.216572][T15454]  sctp_association_new+0xbb/0x2990
[  277.216599][T15454]  sctp_connect_new_asoc+0x1a8/0x770
[  277.216623][T15454]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  277.216648][T15454]  ? __ipv6_addr_type+0xe8/0x2e0
[  277.216672][T15454]  ? __ipv6_addr_type+0xe8/0x2e0
[  277.216704][T15454]  __sctp_connect+0x3e7/0xc70
[  277.216731][T15454]  ? __pfx___sctp_connect+0x10/0x10
[  277.216753][T15454]  ? __pfx_sctp_inet_connect+0x10/0x10
[  277.216775][T15454]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  277.216798][T15454]  ? __pfx_sctp_inet_connect+0x10/0x10
[  277.216817][T15454]  sctp_inet_connect+0x15f/0x220
[  277.216840][T15454]  __sys_connect_file+0x141/0x1a0
[  277.216867][T15454]  __sys_connect+0x141/0x170
[  277.216891][T15454]  ? __pfx___sys_connect+0x10/0x10
[  277.216913][T15454]  ? __fget_files+0x21f/0x3d0
[  277.216945][T15454]  ? __pfx_ksys_write+0x10/0x10
[  277.216971][T15454]  __x64_sys_connect+0x72/0xb0
[  277.216993][T15454]  ? lockdep_hardirqs_on+0x78/0x100
[  277.217018][T15454]  do_syscall_64+0x115/0x870
[  277.217040][T15454]  ? clear_bhb_loop+0x40/0x90
[  277.217062][T15454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.217080][T15454] RIP: 0033:0x7fe39b39ce59
[  277.217095][T15454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  277.217111][T15454] RSP: 002b:00007fe39c197028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  277.217127][T15454] RAX: ffffffffffffffda RBX: 00007fe39b615fa0 RCX: 00007fe39b39ce59
[  277.217139][T15454] RDX: 000000000000001c RSI: 0000200000000300 RDI: 0000000000000003
[  277.217149][T15454] RBP: 00007fe39c197090 R08: 0000000000000000 R09: 0000000000000000
[  277.217159][T15454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.217170][T15454] R13: 00007fe39b616038 R14: 00007fe39b615fa0 R15: 00007ffe87df66d8
[  277.217194][T15454]  </TASK>
[  277.321521][ T6063] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.351324][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.412845][T14459] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -12
[  277.424236][T14459] usb 5-1: USB disconnect, device number 41
[  277.472835][T15464] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2499'.
[  277.476261][T15464] JFS: charset not found
[  277.551070][T15472] netlink: 17 bytes leftover after parsing attributes in process `syz.7.2501'.
[  277.573535][   T40] audit: type=1804 audit(1780760403.145:21492): pid=15446 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.8.2447" name="/newroot/0/file0" dev="tmpfs" ino=19 res=1 errno=0
[  277.581837][   T62] Bluetooth: hci0: command tx timeout
[  277.623962][   T40] audit: type=1400 audit(1780760403.201:21493): avc:  denied  { create } for  pid=15471 comm="syz.7.2501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=decnet_socket permissive=1
[  277.698454][T15476] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.767931][T15481] veth0_to_team: entered promiscuous mode
[  277.771456][T15481] veth0_to_team: left promiscuous mode
[  277.962120][   T40] audit: type=1400 audit(1780760403.519:21494): avc:  denied  { listen } for  pid=15485 comm="syz.5.2506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  278.546130][T15497] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=15497 comm=syz.8.2511
[  278.991601][T15511] dlm: no locking on control device
[  278.993614][T15511] random: crng reseeded on system resumption
[  279.005809][T15511] Hibernate inconsistent memory map detected!
[  279.013472][T15511] PM: hibernation: Image mismatch: architecture specific data
[  279.370720][T14459] usb 13-1: new low-speed USB device number 2 using dummy_hcd
[  279.543493][T14459] usb 13-1: config 0 has an invalid interface number: 55 but max is 0
[  279.543518][T14459] usb 13-1: config 0 has no interface number 0
[  279.543546][T14459] usb 13-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  279.543561][T14459] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  279.543580][T14459] usb 13-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  279.543600][T14459] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  279.543620][T14459] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  279.543662][T14459] usb 13-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  279.543692][T14459] usb 13-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  279.543710][T14459] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.545375][T14459] usb 13-1: config 0 descriptor??
[  279.549431][T15513] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  279.605516][   T40] audit: type=1400 audit(1780760405.044:21495): avc:  denied  { setattr } for  pid=15523 comm="syz.7.2520" name="NETLINK" dev="sockfs" ino=77065 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  279.618844][T15513] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  279.627388][T14459] ldusb 13-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  279.809110][   T62] Bluetooth: hci0: command tx timeout
[  279.811571][   T40] audit: type=1326 audit(1780760405.250:21496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15533 comm="syz.7.2522" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4bd179ce59 code=0x0
[  279.858842][T10241] usb 13-1: USB disconnect, device number 2
[  279.870826][T10241] ldusb 13-1:0.55: LD USB Device #0 now disconnected
[  280.019407][T15538] futex_wake_op: syz.0.2523 tries to shift op by -1; fix this program
[  280.158388][T15546] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2526'.
[  280.233744][   T24] net_ratelimit: 8 callbacks suppressed
[  280.233762][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.240115][  T844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.311347][  T844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.568985][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.773424][ T6474] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.797878][   T40] audit: type=1400 audit(1780760406.167:21497): avc:  denied  { write } for  pid=15574 comm="syz.8.2535" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  280.820432][   T40] audit: type=1400 audit(1780760406.167:21498): avc:  denied  { unlink } for  pid=15574 comm="syz.8.2535" name="file0" dev="9p" ino=72877365 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  280.831871][   T40] audit: type=1400 audit(1780760406.167:21499): avc:  denied  { write } for  pid=15574 comm="syz.8.2535" name="/" dev="9p" ino=72877345 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  280.843496][   T40] audit: type=1400 audit(1780760406.167:21500): avc:  denied  { create } for  pid=15574 comm="syz.8.2535" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1
[  280.909759][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.913850][ T5884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.942723][ T5887] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  280.984163][T15592] FAULT_INJECTION: forcing a failure.
[  280.984163][T15592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.988797][T15592] CPU: 0 UID: 0 PID: 15592 Comm: syz.8.2537 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  280.988817][T15592] Tainted: [L]=SOFTLOCKUP
[  280.988821][T15592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  280.988827][T15592] Call Trace:
[  280.988831][T15592]  <TASK>
[  280.988835][T15592]  dump_stack_lvl+0x100/0x190
[  280.988861][T15592]  should_fail_ex.cold+0x5/0xa
[  280.988876][T15592]  _copy_from_user+0x2e/0xd0
[  280.988895][T15592]  copy_msghdr_from_user+0x9f/0x4f0
[  280.988913][T15592]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  280.988933][T15592]  ___sys_sendmsg+0x106/0x1e0
[  280.988946][T15592]  ? __pfx____sys_sendmsg+0x10/0x10
[  280.988974][T15592]  __sys_sendmsg+0x170/0x220
[  280.988990][T15592]  ? __pfx___sys_sendmsg+0x10/0x10
[  280.989011][T15592]  ? rcu_is_watching+0x12/0xc0
[  280.989029][T15592]  do_syscall_64+0x115/0x870
[  280.989047][T15592]  ? clear_bhb_loop+0x40/0x90
[  280.989061][T15592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.989072][T15592] RIP: 0033:0x7f1e35f9ce59
[  280.989081][T15592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  280.989097][T15592] RSP: 002b:00007f1e36e8f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.989108][T15592] RAX: ffffffffffffffda RBX: 00007f1e36215fa0 RCX: 00007f1e35f9ce59
[  280.989115][T15592] RDX: 0000000024040004 RSI: 0000200000000180 RDI: 0000000000000004
[  280.989121][T15592] RBP: 00007f1e36e8f090 R08: 0000000000000000 R09: 0000000000000000
[  280.989127][T15592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.989134][T15592] R13: 00007f1e36216038 R14: 00007f1e36215fa0 R15: 00007ffd50307e98
[  280.989147][T15592]  </TASK>
[  281.053378][T15596] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.066828][T15596] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.078797][T15596] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.099560][T15602] loop4: detected capacity change from 0 to 7
[  281.133150][T15602]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[  281.134912][T15602] loop4: partition table partially beyond EOD, truncated
[  281.141075][T15602] loop4: p1 size 2989602745 extends beyond EOD, truncated
[  281.146927][T15603] netlink: 128 bytes leftover after parsing attributes in process `syz.8.2541'.
[  281.155337][ T5887] usb 5-1: Using ep0 maxpacket: 8
[  281.161343][ T5887] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  281.167834][ T5887] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  281.172649][ T5757] udevd[5757]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  281.187515][ T5887] usb 5-1: config 0 interface 0 has no altsetting 0
[  281.192744][ T5887] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  281.198038][ T5887] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.213057][ T5887] usb 5-1: config 0 descriptor??
[  281.229630][T15609] veth0_to_team: entered promiscuous mode
[  281.241540][T15609] veth0_to_team: left promiscuous mode
[  281.380397][T15620] FAULT_INJECTION: forcing a failure.
[  281.380397][T15620] name failslab, interval 1, probability 0, space 0, times 0
[  281.380419][T15620] CPU: 3 UID: 0 PID: 15620 Comm: syz.8.2549 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.380434][T15620] Tainted: [L]=SOFTLOCKUP
[  281.380438][T15620] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  281.380444][T15620] Call Trace:
[  281.380448][T15620]  <TASK>
[  281.380452][T15620]  dump_stack_lvl+0x100/0x190
[  281.380468][T15620]  should_fail_ex.cold+0x5/0xa
[  281.380483][T15620]  should_failslab+0xc2/0x120
[  281.380495][T15620]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  281.380512][T15620]  ? __alloc_skb+0x140/0x710
[  281.380527][T15620]  ? __alloc_skb+0x5b7/0x710
[  281.380543][T15620]  __alloc_skb+0x140/0x710
[  281.380557][T15620]  ? __alloc_skb+0x5b7/0x710
[  281.380571][T15620]  ? __pfx___alloc_skb+0x10/0x10
[  281.380589][T15620]  netlink_alloc_large_skb+0x69/0x150
[  281.380604][T15620]  netlink_sendmsg+0x680/0xda0
[  281.380619][T15620]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.380631][T15620]  ? __might_fault+0x60/0x140
[  281.380651][T15620]  ____sys_sendmsg+0x9e1/0xb70
[  281.380662][T15620]  ? __pfx_netlink_sendmsg+0x10/0x10
[  281.380676][T15620]  ? __pfx_____sys_sendmsg+0x10/0x10
[  281.380694][T15620]  ___sys_sendmsg+0x190/0x1e0
[  281.380707][T15620]  ? __pfx____sys_sendmsg+0x10/0x10
[  281.380735][T15620]  __sys_sendmsg+0x170/0x220
[  281.380751][T15620]  ? __pfx___sys_sendmsg+0x10/0x10
[  281.380772][T15620]  ? rcu_is_watching+0x12/0xc0
[  281.380790][T15620]  do_syscall_64+0x115/0x870
[  281.380804][T15620]  ? clear_bhb_loop+0x40/0x90
[  281.380817][T15620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.380827][T15620] RIP: 0033:0x7f1e35f9ce59
[  281.380854][T15620] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.380866][T15620] RSP: 002b:00007f1e36e8f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.380877][T15620] RAX: ffffffffffffffda RBX: 00007f1e36215fa0 RCX: 00007f1e35f9ce59
[  281.380884][T15620] RDX: 0000000024040004 RSI: 0000200000000180 RDI: 0000000000000004
[  281.380890][T15620] RBP: 00007f1e36e8f090 R08: 0000000000000000 R09: 0000000000000000
[  281.380896][T15620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.380902][T15620] R13: 00007f1e36216038 R14: 00007f1e36215fa0 R15: 00007ffd50307e98
[  281.380916][T15620]  </TASK>
[  281.453941][ T5887] usbhid 5-1:0.0: can't add hid device: -71
[  281.500096][ T5887] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  281.509270][ T5887] usb 5-1: USB disconnect, device number 42
[  281.541929][T15633] FAULT_INJECTION: forcing a failure.
[  281.541929][T15633] name failslab, interval 1, probability 0, space 0, times 0
[  281.546165][T15633] CPU: 1 UID: 0 PID: 15633 Comm: syz.5.2555 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.546184][T15633] Tainted: [L]=SOFTLOCKUP
[  281.546187][T15633] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  281.546194][T15633] Call Trace:
[  281.546199][T15633]  <TASK>
[  281.546204][T15633]  dump_stack_lvl+0x100/0x190
[  281.546220][T15633]  should_fail_ex.cold+0x5/0xa
[  281.546236][T15633]  should_failslab+0xc2/0x120
[  281.546249][T15633]  __kmalloc_cache_noprof+0x7a/0x6f0
[  281.546264][T15633]  ? sctp_transport_new+0xa4/0x760
[  281.546277][T15633]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  281.546296][T15633]  sctp_transport_new+0xa4/0x760
[  281.546308][T15633]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  281.546322][T15633]  sctp_assoc_add_peer+0x302/0x14f0
[  281.546337][T15633]  sctp_connect_new_asoc+0x1f8/0x770
[  281.546352][T15633]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  281.546366][T15633]  ? __ipv6_addr_type+0xe8/0x2e0
[  281.546381][T15633]  ? __ipv6_addr_type+0xe8/0x2e0
[  281.546396][T15633]  __sctp_connect+0x3e7/0xc70
[  281.546412][T15633]  ? __pfx___sctp_connect+0x10/0x10
[  281.546425][T15633]  ? __pfx_sctp_inet_connect+0x10/0x10
[  281.546438][T15633]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  281.546451][T15633]  ? __pfx_sctp_inet_connect+0x10/0x10
[  281.546462][T15633]  sctp_inet_connect+0x15f/0x220
[  281.546475][T15633]  __sys_connect_file+0x141/0x1a0
[  281.546492][T15633]  __sys_connect+0x141/0x170
[  281.546506][T15633]  ? __pfx___sys_connect+0x10/0x10
[  281.546521][T15633]  ? __fget_files+0x21f/0x3d0
[  281.546540][T15633]  ? __pfx_ksys_write+0x10/0x10
[  281.546555][T15633]  __x64_sys_connect+0x72/0xb0
[  281.546568][T15633]  ? lockdep_hardirqs_on+0x78/0x100
[  281.546582][T15633]  do_syscall_64+0x115/0x870
[  281.546595][T15633]  ? clear_bhb_loop+0x40/0x90
[  281.546608][T15633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.546619][T15633] RIP: 0033:0x7fe39b39ce59
[  281.546628][T15633] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.546642][T15633] RSP: 002b:00007fe39c197028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  281.546653][T15633] RAX: ffffffffffffffda RBX: 00007fe39b615fa0 RCX: 00007fe39b39ce59
[  281.546660][T15633] RDX: 000000000000001c RSI: 0000200000000300 RDI: 0000000000000003
[  281.546666][T15633] RBP: 00007fe39c197090 R08: 0000000000000000 R09: 0000000000000000
[  281.546672][T15633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  281.546678][T15633] R13: 00007fe39b616038 R14: 00007fe39b615fa0 R15: 00007ffe87df66d8
[  281.546692][T15633]  </TASK>
[  281.803871][   T40] audit: type=1400 audit(1780760407.103:21501): avc:  denied  { listen } for  pid=15650 comm="syz.5.2558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  281.806323][T15652] veth0_to_team: entered promiscuous mode
[  281.815151][T15652] veth0_to_team: left promiscuous mode
[  281.871679][T15635] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2553'.
[  281.879704][T15635] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2553'.
[  281.888290][T15658] netlink: 212 bytes leftover after parsing attributes in process `syz.5.2559'.
[  281.904102][T15658] netlink: 'syz.5.2559': attribute type 2 has an invalid length.
[  281.948593][T15663] Bluetooth: MGMT ver 1.23
[  281.953193][T15663] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2562'.
[  281.991861][T15668] FAULT_INJECTION: forcing a failure.
[  281.991861][T15668] name failslab, interval 1, probability 0, space 0, times 0
[  281.995958][T15668] CPU: 3 UID: 0 PID: 15668 Comm: syz.0.2564 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  281.995974][T15668] Tainted: [L]=SOFTLOCKUP
[  281.995978][T15668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  281.995984][T15668] Call Trace:
[  281.995989][T15668]  <TASK>
[  281.995996][T15668]  dump_stack_lvl+0x100/0x190
[  281.996017][T15668]  should_fail_ex.cold+0x5/0xa
[  281.996032][T15668]  ? sctp_bind_addrs_to_raw+0x12b/0x3b0
[  281.996047][T15668]  should_failslab+0xc2/0x120
[  281.996060][T15668]  __kmalloc_noprof+0xe0/0x850
[  281.996079][T15668]  sctp_bind_addrs_to_raw+0x12b/0x3b0
[  281.996094][T15668]  ? __lock_acquire+0x4a5/0x2630
[  281.996108][T15668]  ? __pfx_sctp_bind_addrs_to_raw+0x10/0x10
[  281.996124][T15668]  ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10
[  281.996145][T15668]  sctp_make_init+0x148/0xda0
[  281.996161][T15668]  ? sctp_v6_get_dst+0x63f/0x20e0
[  281.996174][T15668]  ? __asan_memcpy+0x3c/0x60
[  281.996188][T15668]  ? __pfx_sctp_make_init+0x10/0x10
[  281.996202][T15668]  ? sctp_v6_get_dst+0x796/0x20e0
[  281.996214][T15668]  ? find_held_lock+0x2b/0x80
[  281.996227][T15668]  ? sctp_sm_lookup_event+0x10e/0x520
[  281.996242][T15668]  ? __pfx_sctp_sm_lookup_event+0x10/0x10
[  281.996259][T15668]  sctp_sf_do_prm_asoc+0xbf/0x360
[  281.996271][T15668]  ? __pfx_sctp_pname+0x10/0x10
[  281.996284][T15668]  sctp_do_sm+0x17a/0x5be0
[  281.996298][T15668]  ? find_held_lock+0x2b/0x80
[  281.996308][T15668]  ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70
[  281.996321][T15668]  ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70
[  281.996333][T15668]  ? __pfx_sctp_do_sm+0x10/0x10
[  281.996361][T15668]  ? sctp_connect_new_asoc+0x41e/0x770
[  281.996374][T15668]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  281.996390][T15668]  sctp_primitive_ASSOCIATE+0x9c/0xd0
[  281.996408][T15668]  __sctp_connect+0x9fc/0xc70
[  281.996423][T15668]  ? __pfx___sctp_connect+0x10/0x10
[  281.996436][T15668]  ? __pfx_sctp_inet_connect+0x10/0x10
[  281.996449][T15668]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  281.996463][T15668]  ? __pfx_sctp_inet_connect+0x10/0x10
[  281.996474][T15668]  sctp_inet_connect+0x15f/0x220
[  281.996488][T15668]  __sys_connect_file+0x141/0x1a0
[  281.996505][T15668]  __sys_connect+0x141/0x170
[  281.996521][T15668]  ? __pfx___sys_connect+0x10/0x10
[  281.996534][T15668]  ? __fget_files+0x21f/0x3d0
[  281.996552][T15668]  ? __pfx_ksys_write+0x10/0x10
[  281.996567][T15668]  __x64_sys_connect+0x72/0xb0
[  281.996580][T15668]  ? lockdep_hardirqs_on+0x78/0x100
[  281.996594][T15668]  do_syscall_64+0x115/0x870
[  281.996607][T15668]  ? clear_bhb_loop+0x40/0x90
[  281.996620][T15668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.996631][T15668] RIP: 0033:0x7f06bdf9ce59
[  281.996640][T15668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  281.996651][T15668] RSP: 002b:00007f06bc1f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  281.996661][T15668] RAX: ffffffffffffffda RBX: 00007f06be215fa0 RCX: 00007f06bdf9ce59
[  281.996668][T15668] RDX: 000000000000001c RSI: 0000200000000300 RDI: 0000000000000003
[  281.996674][T15668] RBP: 00007f06bc1f6090 R08: 0000000000000000 R09: 0000000000000000
[  281.996680][T15668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  281.996686][T15668] R13: 00007f06be216038 R14: 00007f06be215fa0 R15: 00007ffd25d4f0c8
[  281.996699][T15668]  </TASK>
[  282.031612][   T62] Bluetooth: hci0: command tx timeout
[  282.050258][T15663] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63058 sclass=netlink_route_socket pid=15663 comm=syz.5.2562
[  282.280278][T15684] FAULT_INJECTION: forcing a failure.
[  282.280278][T15684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  282.284385][T15684] CPU: 3 UID: 0 PID: 15684 Comm: syz.8.2570 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  282.284402][T15684] Tainted: [L]=SOFTLOCKUP
[  282.284406][T15684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  282.284412][T15684] Call Trace:
[  282.284416][T15684]  <TASK>
[  282.284420][T15684]  dump_stack_lvl+0x100/0x190
[  282.284436][T15684]  should_fail_ex.cold+0x5/0xa
[  282.284454][T15684]  _copy_from_iter+0x1f4/0x1690
[  282.284472][T15684]  ? __asan_memset+0x23/0x50
[  282.284488][T15684]  ? __pfx__copy_from_iter+0x10/0x10
[  282.284501][T15684]  ? __pfx___alloc_skb+0x10/0x10
[  282.284521][T15684]  netlink_sendmsg+0x808/0xda0
[  282.284537][T15684]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.284553][T15684]  ? __might_fault+0x60/0x140
[  282.284574][T15684]  ____sys_sendmsg+0x9e1/0xb70
[  282.284585][T15684]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.284599][T15684]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.284617][T15684]  ___sys_sendmsg+0x190/0x1e0
[  282.284631][T15684]  ? __pfx____sys_sendmsg+0x10/0x10
[  282.284660][T15684]  __sys_sendmsg+0x170/0x220
[  282.284676][T15684]  ? __pfx___sys_sendmsg+0x10/0x10
[  282.284700][T15684]  ? rcu_is_watching+0x12/0xc0
[  282.284718][T15684]  do_syscall_64+0x115/0x870
[  282.284732][T15684]  ? clear_bhb_loop+0x40/0x90
[  282.284744][T15684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.284756][T15684] RIP: 0033:0x7f1e35f9ce59
[  282.284765][T15684] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  282.284776][T15684] RSP: 002b:00007f1e36e8f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.284787][T15684] RAX: ffffffffffffffda RBX: 00007f1e36215fa0 RCX: 00007f1e35f9ce59
[  282.284793][T15684] RDX: 0000000024040004 RSI: 0000200000000180 RDI: 0000000000000004
[  282.284800][T15684] RBP: 00007f1e36e8f090 R08: 0000000000000000 R09: 0000000000000000
[  282.284806][T15684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.284812][T15684] R13: 00007f1e36216038 R14: 00007f1e36215fa0 R15: 00007ffd50307e98
[  282.284825][T15684]  </TASK>
[  282.445761][T15689] futex_wake_op: syz.7.2568 tries to shift op by -1; fix this program
[  282.490564][T15691] binder: 15690:15691 unknown command 0
[  282.499700][T15691] binder: 15690:15691 ioctl c0306201 200000000480 returned -22
[  282.509062][   T40] audit: type=1400 audit(1780760407.767:21502): avc:  denied  { listen } for  pid=15690 comm="syz.5.2573" path="/487/file0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  282.509889][T15691] 9pnet_fd: p9_fd_create_unix (15691): problem connecting socket: ./file0: -91
[  282.647764][T15706] veth0_to_team: entered promiscuous mode
[  282.659016][T15706] veth0_to_team: left promiscuous mode
[  283.185649][ T5884] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  283.272351][T15718] veth0_to_team: entered promiscuous mode
[  283.275502][T15718] veth0_to_team: left promiscuous mode
[  283.324618][ T5884] usb 10-1: device descriptor read/64, error -71
[  283.417227][T15726] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2585'.
[  283.438857][T15722] xt_hashlimit: size too large, truncated to 1048576
[  283.469024][T15726] Cannot find del_set index 14804 as target
[  283.541749][T15735] lo speed is unknown, defaulting to 1000
[  283.602353][ T5884] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  283.718124][   T40] audit: type=1400 audit(1780760408.900:21503): avc:  denied  { getopt } for  pid=15748 comm="syz.0.2592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  283.752088][ T5884] usb 10-1: device descriptor read/64, error -71
[  283.770562][T15752] netlink: 'syz.0.2593': attribute type 4 has an invalid length.
[  283.789372][T15754] veth0_to_team: entered promiscuous mode
[  283.792193][T15754] veth0_to_team: left promiscuous mode
[  283.869964][ T5884] usb usb10-port1: attempt power cycle
[  284.146572][T15775] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2601'.
[  284.150176][T15775] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2601'.
[  284.232898][ T5884] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[  284.254761][ T5884] usb 10-1: device descriptor read/8, error -71
[  284.319553][T15780] netlink: 212348 bytes leftover after parsing attributes in process `syz.0.2602'.
[  284.522704][ T5884] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  284.545460][ T5884] usb 10-1: device descriptor read/8, error -71
[  284.672229][ T5884] usb usb10-port1: unable to enumerate USB device
[  285.050500][T15823] xt_hashlimit: size too large, truncated to 1048576
[  285.106653][   T40] audit: type=1400 audit(1780760410.200:21504): avc:  denied  { ioctl } for  pid=15822 comm="syz.0.2617" path="socket:[76748]" dev="sockfs" ino=76748 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  285.409915][   T40] audit: type=1400 audit(1780760410.474:21505): avc:  denied  { mount } for  pid=15843 comm="syz.8.2625" name="/" dev="configfs" ino=3120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  285.427073][   T40] audit: type=1400 audit(1780760410.493:21506): avc:  denied  { setattr } for  pid=15843 comm="syz.8.2625" name="/" dev="configfs" ino=3120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  285.473665][T15849] netlink: 'syz.8.2626': attribute type 4 has an invalid length.
[  285.503946][T15851] option changes via remount are deprecated (pid=15850 comm=syz.8.2627)
[  285.509815][T15851] cgroup: option or name mismatch, new: 0x0 "none", old: 0x0 ""
[  285.583196][   T40] audit: type=1400 audit(1780760410.642:21507): avc:  denied  { node_bind } for  pid=15857 comm="syz.8.2629" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  285.644331][ T6478] net_ratelimit: 31 callbacks suppressed
[  285.644348][ T6478] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.656963][T15864] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2630'.
[  285.661708][T15866] xt_hashlimit: size too large, truncated to 1048576
[  285.671664][T15863] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2630'.
[  285.703396][ T5817] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  285.746286][T15872] veth0_to_team: entered promiscuous mode
[  285.750181][T15872] veth0_to_team: left promiscuous mode
[  285.845868][T15874] openvswitch: netlink: Key 6 has unexpected len 60 expected 2
[  285.850260][T15874] random: crng reseeded on system resumption
[  285.869208][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.878594][ T5817] usb 5-1: Using ep0 maxpacket: 8
[  285.891950][ T5817] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  285.900029][ T5817] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  285.906089][ T5817] usb 5-1: config 1 has no interface number 0
[  285.911140][ T5817] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  285.923259][ T5817] usb 5-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  285.928431][ T5817] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.937773][T15878] comedi comedi2: pcl726: I/O base address or length out of range
[  285.942637][ T5817] usb 5-1: Product: syz
[  285.944373][ T5817] usb 5-1: Manufacturer: syz
[  285.947434][ T5817] usb 5-1: SerialNumber: syz
[  286.032486][T15884] autofs: Unknown parameter 'mountinfo'
[  286.168653][   T40] audit: type=1400 audit(1780760411.185:21508): avc:  denied  { read } for  pid=15892 comm="syz.8.2639" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  286.228523][ T5817] usb 5-1: USB disconnect, device number 43
[  286.323841][T15893] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  286.328201][ T5741] udevd[5741]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  286.335950][T15893] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  286.368616][T15893] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  286.370688][T15893] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  286.375385][T15893] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  286.388134][T15893] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  286.390048][T15893] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  286.400410][T15893] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  286.411929][T15893] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  286.414656][T15893] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  286.442576][T15893] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  286.454214][T15893] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  286.458824][T15893] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  286.465903][T15893] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  286.532685][T15922] bridge2: entered promiscuous mode
[  286.534878][T15922] bridge2: entered allmulticast mode
[  286.599771][T15932] ptrace attach of "/syz-executor exec"[13691] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  286.649358][   T40] audit: type=1400 audit(1780760411.644:21509): avc:  denied  { setopt } for  pid=15933 comm="syz.0.2651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  286.685404][   T40] audit: type=1400 audit(1780760411.644:21510): avc:  denied  { listen } for  pid=15933 comm="syz.0.2651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  286.724441][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.728497][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.732468][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.831332][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.915149][   T24] usb 12-1: new full-speed USB device number 3 using dummy_hcd
[  286.979458][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.984901][ T1490] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.990959][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.055082][   T24] usb 12-1: device descriptor read/64, error -71
[  287.152302][   T40] audit: type=1400 audit(1780760412.121:21511): avc:  denied  { getopt } for  pid=15951 comm="syz.8.2658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  287.167869][T15952] syzkaller1: entered promiscuous mode
[  287.169642][T15952] syzkaller1: entered allmulticast mode
[  287.225843][T15955] netlink: 'syz.5.2659': attribute type 2 has an invalid length.
[  287.321178][   T24] usb 12-1: new full-speed USB device number 4 using dummy_hcd
[  287.350188][   T40] audit: type=1400 audit(1780760412.299:21512): avc:  denied  { map } for  pid=15961 comm="syz.5.2661" path="/dev/tty4" dev="devtmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  287.364045][   T40] audit: type=1400 audit(1780760412.299:21513): avc:  denied  { execute } for  pid=15961 comm="syz.5.2661" path="/dev/tty4" dev="devtmpfs" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  287.381918][T15962] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap0
[  287.386142][T15962] ip6gretap0: entered promiscuous mode
[  287.417413][T15969] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2663'.
[  287.428147][ T5885] usb 5-1: new full-speed USB device number 44 using dummy_hcd
[  287.438265][T15971] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.2664'.
[  287.443960][T15969] team1: entered promiscuous mode
[  287.446050][T15969] team1: entered allmulticast mode
[  287.481369][   T24] usb 12-1: device descriptor read/64, error -71
[  287.599405][   T24] usb usb12-port1: attempt power cycle
[  287.604519][ T5885] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  287.620262][ T5885] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  287.624521][ T5885] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  287.632743][ T5885] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  287.641624][ T5885] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  287.644941][ T5885] usb 5-1: Product: syz
[  287.646648][ T5885] usb 5-1: Manufacturer: syz
[  287.648571][ T5885] usb 5-1: SerialNumber: syz
[  287.654488][ T5885] usb 5-1: config 0 descriptor??
[  287.659399][T15953] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  287.685393][T15981] veth0_to_team: entered promiscuous mode
[  287.688896][T15981] veth0_to_team: left promiscuous mode
[  287.716503][ T5885] rc_core: IR keymap rc-streamzap not found
[  287.719055][ T5885] Registered IR keymap rc-empty
[  287.723532][ T5885] rc rc0: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  287.730609][ T5885] input: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input19
[  287.888254][T15953] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  287.900329][T15953] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  287.963253][   T24] usb 12-1: new full-speed USB device number 5 using dummy_hcd
[  287.996343][   T24] usb 12-1: device descriptor read/8, error -71
[  288.003596][T15989] QAT: failed to copy from user.
[  288.009256][T15989] netlink: 64 bytes leftover after parsing attributes in process `syz.8.2670'.
[  288.261607][   T24] usb 12-1: new full-speed USB device number 6 using dummy_hcd
[  288.286393][   T24] usb 12-1: device descriptor read/8, error -71
[  288.336827][ T5885] usb 13-1: new high-speed USB device number 3 using dummy_hcd
[  288.400649][   T24] usb usb12-port1: unable to enumerate USB device
[  288.462995][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.465093][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.469255][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.473307][T16002] smbdirect: ib_dev[syz1]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  288.478392][T16002] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  288.484019][T16002] smbdirect: ib_dev[syz1]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  288.494496][T16002] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  288.507094][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.509859][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.515342][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.519930][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.523137][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.525880][T16002] xfrm0 speed is unknown, defaulting to 1000
[  288.529904][ T5739] Bluetooth: hci2: command 0x206a tx timeout
[  288.531177][ T5885] usb 13-1: Using ep0 maxpacket: 8
[  288.532362][   T62] Bluetooth: hci1: command 0x0406 tx timeout
[  288.541455][ T5885] usb 13-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.550987][ T5885] usb 13-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.560736][ T5885] usb 13-1: config 0 interface 0 has no altsetting 0
[  288.567428][ T5885] usb 13-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  288.576379][ T5885] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.586550][ T5885] usb 13-1: config 0 descriptor??
[  288.605240][   T62] Bluetooth: hci3: command 0x0c1a tx timeout
[  288.605298][ T5100] Bluetooth: hci5: command 0x0c1a tx timeout
[  288.607798][ T5739] Bluetooth: hci0: command 0x0c1a tx timeout
[  289.033825][ T5885] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0
[  289.036122][ T5885] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0
[  289.042434][ T5885] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0
[  289.044683][ T5885] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0
[  289.046910][ T5885] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0
[  289.047081][   T62] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  289.049497][ T5885] mcp2221 0003:04D8:00DD.000D: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.8-1/input0
[  289.057746][   T62] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  289.061292][   T62] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  289.065538][   T62] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  289.068743][   T62] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  289.231902][T16005] lo speed is unknown, defaulting to 1000
[  289.234536][T16005] xfrm0 speed is unknown, defaulting to 1000
[  289.237425][ T5885] usb 13-1: USB disconnect, device number 3
[  289.443094][T16005] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.445488][T16005] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.447979][T16005] bridge_slave_0: entered allmulticast mode
[  289.450679][T16005] bridge_slave_0: entered promiscuous mode
[  289.454857][T16005] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.456980][T16005] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.459752][T16005] bridge_slave_1: entered allmulticast mode
[  289.464231][T16005] bridge_slave_1: entered promiscuous mode
[  289.501592][T16005] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.507086][T16005] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  289.526769][T16005] team0: Port device team_slave_0 added
[  289.529767][T16005] team0: Port device team_slave_1 added
[  289.553123][T16005] batman_adv: batadv0: Adding interface: batadv_slave_0
[  289.556091][T16005] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  289.564809][T16005] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  289.571066][T16005] batman_adv: batadv0: Adding interface: batadv_slave_1
[  289.573788][T16005] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  289.584504][T16005] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  289.627634][T16005] hsr_slave_0: entered promiscuous mode
[  289.632964][T16005] hsr_slave_1: entered promiscuous mode
[  289.635422][T16005] debugfs: 'hsr0' already exists in 'hsr'
[  289.637164][T16005] Cannot create hsr debugfs directory
[  289.802281][T16005] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  289.809814][T16005] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  289.813627][T16005] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  289.830295][T16005] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  289.836484][T16005] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  289.849989][T16005] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  289.852733][T16005] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  289.870411][T16005] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  289.897681][T16005] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.899952][T16005] bridge0: port 2(bridge_slave_1) entered forwarding state
[  289.902336][T16005] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.904532][T16005] bridge0: port 1(bridge_slave_0) entered forwarding state
[  289.916386][T16031] syzkaller1: entered promiscuous mode
[  289.919581][T16031] syzkaller1: entered allmulticast mode
[  289.938627][T16033] random: crng reseeded on system resumption
[  289.994552][T16005] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.012053][ T6481] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.018696][ T6481] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.037998][T16005] 8021q: adding VLAN 0 to HW filter on device team0
[  290.046732][ T6478] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.049089][ T6478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.058557][ T6474] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.060807][ T6474] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.116158][T16005] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  290.353142][T16059] veth0_to_team: entered promiscuous mode
[  290.356264][   T39] usb 5-1: USB disconnect, device number 44
[  290.378759][T16059] veth0_to_team: left promiscuous mode
[  290.405011][T16057] netlink: 64 bytes leftover after parsing attributes in process `syz.7.2686'.
[  290.454752][T16005] 8021q: adding VLAN 0 to HW filter on device batadv0
[  290.636359][T16097] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2695'.
[  290.681184][T16005] veth0_vlan: entered promiscuous mode
[  290.691209][T16005] veth1_vlan: entered promiscuous mode
[  290.711077][T16005] veth0_macvtap: entered promiscuous mode
[  290.717402][T16005] veth1_macvtap: entered promiscuous mode
[  290.734608][T16005] batman_adv: batadv0: Interface activated: batadv_slave_0
[  290.740624][   T62] Bluetooth: hci1: command 0x0406 tx timeout
[  290.742873][T16005] batman_adv: batadv0: Interface activated: batadv_slave_1
[  290.764495][T16100] netlink: 'syz.8.2696': attribute type 4 has an invalid length.
[  290.827342][   T62] Bluetooth: hci5: command 0x0c1a tx timeout
[  290.837022][   T62] Bluetooth: hci3: command 0x0c1a tx timeout
[  290.838999][   T62] Bluetooth: hci0: command 0x0c1a tx timeout
[  290.849752][   T13] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  290.868809][   T13] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.884926][ T6481] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  290.887631][ T6481] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  290.894702][T16104] veth0_to_team: entered promiscuous mode
[  290.898397][T16104] veth0_to_team: left promiscuous mode
[  290.924424][T16107] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2699'.
[  290.944661][ T6481] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  290.948095][ T6481] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  291.049476][   T13] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  291.056089][   T13] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.123390][T16121] overlay: filesystem on ./file0 not supported
[  291.128614][T16119] netlink: 'syz.7.2703': attribute type 9 has an invalid length.
[  291.136270][T16119] netlink: 212368 bytes leftover after parsing attributes in process `syz.7.2703'.
[  291.223003][   T13] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  291.232657][   T13] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.253590][ T5100] Bluetooth: hci2: command tx timeout
[  291.272729][ T6468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.275380][ T6468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.287010][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  291.287025][   T40] audit: type=1400 audit(1780760415.986:21516): avc:  denied  { read } for  pid=16129 comm="syz.8.2707" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  291.298177][   T40] audit: type=1400 audit(1780760415.986:21517): avc:  denied  { open } for  pid=16129 comm="syz.8.2707" path="/77/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  291.323421][ T6467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.332078][ T6467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.350271][T16128] picdev_read: 117 callbacks suppressed
[  291.350282][T16128] kvm: pic: non byte read
[  291.358823][T16134] trusted_key: encrypted_key: master key parameter '' is invalid
[  291.363870][T16128] pic_ioport_write: 15 callbacks suppressed
[  291.363879][T16128] kvm: pic: single mode not supported
[  291.366132][T16128] kvm: pic: non byte read
[  291.384626][T16128] kvm: pic: non byte read
[  291.393348][T16128] kvm: pic: single mode not supported
[  291.393359][T16128] pic_ioport_write: 18 callbacks suppressed
[  291.393366][T16128] kvm: pic: level sensitive irq not supported
[  291.404756][   T13] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  291.404792][   T13] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.405189][T16128] kvm: pic: non byte read
[  291.406858][T16128] kvm: pic: non byte read
[  291.411552][T16128] kvm: pic: non byte read
[  291.424702][    T9] net_ratelimit: 16 callbacks suppressed
[  291.424715][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.447656][T16128] kvm: pic: non byte read
[  291.459248][T16128] kvm: pic: non byte read
[  291.468726][T16128] kvm: pic: level sensitive irq not supported
[  291.469056][T16128] kvm: pic: non byte read
[  291.593496][T16151] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  291.597263][ T6481] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.643177][   T40] audit: type=1400 audit(1780760416.313:21518): avc:  denied  { create } for  pid=16154 comm="syz.8.2712" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1
[  291.691134][ T5149] Dev loop2: unable to read RDB block 7
[  291.701723][ T5149]  loop2: AHDI p1 p2 p3
[  291.705885][ T5149] loop2: partition table partially beyond EOD, truncated
[  291.713173][ T5149] loop2: p1 start 1601398130 is beyond EOD, truncated
[  291.715200][ T5149] loop2: p2 start 1702059890 is beyond EOD, truncated
[  291.751923][   T13] bridge_slave_1: left promiscuous mode
[  291.753796][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.764179][   T13] bridge_slave_0: left allmulticast mode
[  291.765987][   T13] bridge_slave_0: left promiscuous mode
[  291.772290][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.852765][ T6467] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.859354][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.864523][ T7714] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.911751][T16169] netlink: 76 bytes leftover after parsing attributes in process `syz.9.2715'.
[  292.025902][ T5884] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.062979][ T6478] smbdirect: ib_dev[syz1] removed
[  292.132825][   T13] bond1 (unregistering): (slave geneve2): Releasing active interface
[  292.376049][T16189] usb 2-1: USB disconnect, device number 3
[  292.410731][T16191] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2720'.
[  292.446560][   T13] bond3 (unregistering): (slave bridge3): Releasing backup interface
[  292.451329][   T13] bridge3 (unregistering): left promiscuous mode
[  292.537135][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.550425][T16194] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2721'.
[  292.609750][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  292.617084][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  292.628439][   T13] bond0 (unregistering): Released all slaves
[  292.634017][   T13] bond1 (unregistering): Released all slaves
[  292.651072][   T13] bond2 (unregistering): (slave veth3): Releasing backup interface
[  292.658685][   T13] bond2 (unregistering): Released all slaves
[  292.673736][   T13] bond3 (unregistering): Released all slaves
[  292.688264][   T13] bond4 (unregistering): Released all slaves
[  292.704497][   T13] bond5 (unregistering): Released all slaves
[  292.719226][   T13] bond6 (unregistering): Released all slaves
[  292.732242][   T13] bond7 (unregistering): Released all slaves
[  292.747135][T16166] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  292.747426][   T58] xfrm0 speed is unknown, defaulting to 1000
[  292.752093][   T58] infiniband syz1: ib_query_port failed (-19)
[  292.883637][   T13] tipc: Left network mode
[  292.892947][   T13] IPVS: stopping backup sync thread 13338 ...
[  292.938700][T16207] bond1 (unregistering): Released all slaves
[  293.027486][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.048825][ T5100] Bluetooth: hci0: command 0x0c1a tx timeout
[  293.050566][   T62] Bluetooth: hci3: command 0x0c1a tx timeout
[  293.051155][ T5100] Bluetooth: hci5: command 0x0c1a tx timeout
[  293.354963][T16236] 8021q: adding VLAN 0 to HW filter on device bond1
[  293.381108][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.419700][T16243] veth0_to_team: entered promiscuous mode
[  293.423040][T16243] veth0_to_team: left promiscuous mode
[  293.476358][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.476463][ T5100] Bluetooth: hci2: command tx timeout
[  293.560691][T16250] FAULT_INJECTION: forcing a failure.
[  293.560691][T16250] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  293.568125][T16250] CPU: 2 UID: 0 PID: 16250 Comm: syz.7.2738 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  293.568154][T16250] Tainted: [L]=SOFTLOCKUP
[  293.568160][T16250] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  293.568172][T16250] Call Trace:
[  293.568178][T16250]  <TASK>
[  293.568186][T16250]  dump_stack_lvl+0x100/0x190
[  293.568221][T16250]  should_fail_ex.cold+0x5/0xa
[  293.568242][T16250]  ? prepare_alloc_pages+0x16d/0x5f0
[  293.568265][T16250]  should_fail_alloc_page+0xeb/0x140
[  293.568288][T16250]  prepare_alloc_pages+0x1f0/0x5f0
[  293.568311][T16250]  ? ima_match_policy+0x8b8/0x2340
[  293.568338][T16250]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  293.568367][T16250]  ? __lock_acquire+0x4a5/0x2630
[  293.568403][T16250]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  293.568434][T16250]  ? find_held_lock+0x2b/0x80
[  293.568450][T16250]  ? process_measurement+0x4c8/0x2350
[  293.568476][T16250]  ? process_measurement+0x4c8/0x2350
[  293.568523][T16250]  ? up_write+0x28c/0x4f0
[  293.568551][T16250]  ? process_measurement+0x1f4/0x2350
[  293.568575][T16250]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  293.568598][T16250]  ? policy_nodemask+0xed/0x4f0
[  293.568622][T16250]  alloc_pages_mpol+0x1fb/0x540
[  293.568643][T16250]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  293.568663][T16250]  ? __lock_acquire+0x4a5/0x2630
[  293.568691][T16250]  alloc_pages_noprof+0x1a/0x160
[  293.568715][T16250]  __pud_alloc+0x3b/0x690
[  293.568739][T16250]  __handle_mm_fault+0x13ea/0x2a00
[  293.568769][T16250]  ? mt_find+0x45e/0x8e0
[  293.568804][T16250]  ? __pfx___handle_mm_fault+0x10/0x10
[  293.568833][T16250]  ? __pfx_mt_find+0x10/0x10
[  293.568870][T16250]  ? find_vma+0xbf/0x140
[  293.568885][T16250]  ? __pfx_find_vma+0x10/0x10
[  293.568907][T16250]  handle_mm_fault+0x37b/0xa30
[  293.568935][T16250]  do_user_addr_fault+0x74c/0x12f0
[  293.568961][T16250]  ? trace_page_fault_kernel+0x7a/0x200
[  293.568985][T16250]  exc_page_fault+0x6f/0xd0
[  293.569007][T16250]  asm_exc_page_fault+0x26/0x30
[  293.569023][T16250] RIP: 0010:_copy_from_user+0x93/0xd0
[  293.569044][T16250] Code: 52 0f fd 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 59 3b 7d fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 55 4d
[  293.569061][T16250] RSP: 0018:ffffc90005bf7bc0 EFLAGS: 00050297
[  293.569075][T16250] RAX: 0000000000000001 RBX: 0000200000000280 RCX: 000000000000000c
[  293.569086][T16250] RDX: 0000000000000001 RSI: 0000200000000280 RDI: ffffc90005bf7d30
[  293.569097][T16250] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000b7efa7
[  293.569107][T16250] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  293.569117][T16250] R13: ffffc90005bf7d30 R14: 0000200000000280 R15: 0000000000000000
[  293.569142][T16250]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[  293.569169][T16250]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  293.569197][T16250]  ? __local_bh_enable_ip+0x9e/0x120
[  293.569220][T16250]  ? lockdep_hardirqs_on+0x78/0x100
[  293.569260][T16250]  do_ip_setsockopt+0x1fee/0x3310
[  293.569289][T16250]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  293.569313][T16250]  ? __pfx_sock_has_perm+0x10/0x10
[  293.569334][T16250]  ? selinux_netlbl_socket_setsockopt+0x134/0x470
[  293.569362][T16250]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  293.569396][T16250]  ip_setsockopt+0x5a/0xf0
[  293.569423][T16250]  raw_setsockopt+0x60/0x1b0
[  293.569447][T16250]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  293.569469][T16250]  do_sock_setsockopt+0xf3/0x1d0
[  293.569490][T16250]  __sys_setsockopt+0x195/0x220
[  293.569520][T16250]  __x64_sys_setsockopt+0xbd/0x160
[  293.569543][T16250]  ? do_syscall_64+0x90/0x870
[  293.569564][T16250]  ? lockdep_hardirqs_on+0x78/0x100
[  293.569585][T16250]  do_syscall_64+0x115/0x870
[  293.569604][T16250]  ? clear_bhb_loop+0x40/0x90
[  293.569625][T16250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.569641][T16250] RIP: 0033:0x7f4bd179ce59
[  293.569656][T16250] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  293.569671][T16250] RSP: 002b:00007f4bd273d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  293.569686][T16250] RAX: ffffffffffffffda RBX: 00007f4bd1a15fa0 RCX: 00007f4bd179ce59
[  293.569696][T16250] RDX: 0000000000000024 RSI: 0000000000000000 RDI: 0000000000000003
[  293.569706][T16250] RBP: 00007f4bd273d090 R08: 000000000000000c R09: 0000000000000000
[  293.569716][T16250] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  293.569726][T16250] R13: 00007f4bd1a16038 R14: 00007f4bd1a15fa0 R15: 00007fff2ce1b738
[  293.569750][T16250]  </TASK>
[  294.009023][T16259] netlink: 104 bytes leftover after parsing attributes in process `syz.7.2740'.
[  294.134445][T16263] netlink: 'syz.7.2741': attribute type 7 has an invalid length.
[  294.222297][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802d01c000: rx timeout, send abort
[  294.225751][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802d01c000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  294.372410][T16279] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2747'.
[  294.376457][T16279] netdevsim netdevsim7 netdevsim0: entered promiscuous mode
[  294.423151][   T40] audit: type=1400 audit(1780760418.915:21519): avc:  denied  { setattr } for  pid=16278 comm="syz.0.2748" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  294.432270][T16281] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  295.035641][   T13] hsr_slave_0: left promiscuous mode
[  295.049772][   T13] hsr_slave_1: left promiscuous mode
[  295.053482][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  295.055896][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  295.094355][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  295.096798][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.111856][   T13] veth1_macvtap: left promiscuous mode
[  295.115712][   T13] veth0_macvtap: left promiscuous mode
[  295.672496][T16335] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0
[  295.698974][ T5100] Bluetooth: hci2: command tx timeout
[  295.858904][ T6477] smbdirect: ib_dev[syz0] removed
[  295.859709][   T24] lo speed is unknown, defaulting to 1000
[  295.862367][   T24] syz0: Port: 1 Link DOWN
[  296.031982][T16346] binder: 16345:16346 ioctl c0306201 2000000001c0 returned -14
[  296.149477][T16355] veth0_to_team: entered promiscuous mode
[  296.152856][T16355] veth0_to_team: left promiscuous mode
[  296.509059][T16375] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  296.518860][T16375] netlink: 'syz.7.2775': attribute type 2 has an invalid length.
[  296.522815][T16375] netlink: 'syz.7.2775': attribute type 1 has an invalid length.
[  296.563194][T16377] Unsupported ieee802154 address type: 0
[  296.566784][T16370] netlink: 'syz.9.2772': attribute type 3 has an invalid length.
[  296.571674][T16370] netlink: 'syz.9.2772': attribute type 1 has an invalid length.
[  296.575984][   T40] audit: type=1400 audit(1780760420.936:21520): avc:  denied  { setattr } for  pid=16376 comm="syz.7.2777" name="IEEE-802.15.4-RAW" dev="sockfs" ino=84152 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  296.584217][T16370] netlink: 224 bytes leftover after parsing attributes in process `syz.9.2772'.
[  296.588656][T16370] NCSI netlink: No device for ifindex 0
[  296.701017][   T40] audit: type=1800 audit(1780760421.049:21521): pid=16377 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.7.2777" name="/" dev="sockfs" ino=84157 res=0 errno=0
[  296.828318][ T5100] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  296.883575][   T40] audit: type=1800 audit(1780760421.217:21522): pid=16398 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.7.2782" name="bus" dev="overlay" ino=528 res=0 errno=0
[  297.069307][    T9] net_ratelimit: 9 callbacks suppressed
[  297.069323][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  297.072098][T16412] FAULT_INJECTION: forcing a failure.
[  297.072098][T16412] name failslab, interval 1, probability 0, space 0, times 0
[  297.094728][T16412] CPU: 2 UID: 0 PID: 16412 Comm: syz.7.2786 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.094756][T16412] Tainted: [L]=SOFTLOCKUP
[  297.094762][T16412] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  297.094772][T16412] Call Trace:
[  297.094780][T16412]  <TASK>
[  297.094786][T16412]  dump_stack_lvl+0x100/0x190
[  297.094810][T16412]  should_fail_ex.cold+0x5/0xa
[  297.094842][T16412]  should_failslab+0xc2/0x120
[  297.094862][T16412]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  297.094886][T16412]  ? dst_alloc+0x99/0x1a0
[  297.094914][T16412]  dst_alloc+0x99/0x1a0
[  297.094943][T16412]  rt_dst_alloc+0x35/0x3a0
[  297.094967][T16412]  ip_route_output_key_hash_rcu+0x87a/0x2870
[  297.095021][T16412]  ip_route_output_key_hash+0x118/0x2b0
[  297.095048][T16412]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  297.095080][T16412]  ? irqentry_exit+0x24d/0x970
[  297.095108][T16412]  ip_route_output_flow+0x27/0x150
[  297.095126][T16412]  ip_mc_find_dev+0x24c/0x390
[  297.095152][T16412]  ? __pfx_ip_mc_find_dev+0x10/0x10
[  297.095183][T16412]  ? copy_from_sockptr_offset.constprop.0+0xe4/0x1a0
[  297.095212][T16412]  ip_mc_leave_group+0x9b/0x4e0
[  297.095230][T16412]  ? lockdep_hardirqs_on+0x78/0x100
[  297.095254][T16412]  do_ip_setsockopt+0x2037/0x3310
[  297.095282][T16412]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  297.095306][T16412]  ? __pfx_sock_has_perm+0x10/0x10
[  297.095329][T16412]  ? selinux_netlbl_socket_setsockopt+0x134/0x470
[  297.095355][T16412]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  297.095414][T16412]  ip_setsockopt+0x5a/0xf0
[  297.095442][T16412]  raw_setsockopt+0x60/0x1b0
[  297.095466][T16412]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  297.095487][T16412]  do_sock_setsockopt+0xf3/0x1d0
[  297.095509][T16412]  __sys_setsockopt+0x195/0x220
[  297.095539][T16412]  __x64_sys_setsockopt+0xbd/0x160
[  297.095565][T16412]  ? do_syscall_64+0x90/0x870
[  297.095585][T16412]  ? lockdep_hardirqs_on+0x78/0x100
[  297.095606][T16412]  do_syscall_64+0x115/0x870
[  297.095626][T16412]  ? clear_bhb_loop+0x40/0x90
[  297.095647][T16412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.095664][T16412] RIP: 0033:0x7f4bd179ce59
[  297.095678][T16412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.095694][T16412] RSP: 002b:00007f4bd273d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  297.095713][T16412] RAX: ffffffffffffffda RBX: 00007f4bd1a15fa0 RCX: 00007f4bd179ce59
[  297.095724][T16412] RDX: 0000000000000024 RSI: 0000000000000000 RDI: 0000000000000003
[  297.095736][T16412] RBP: 00007f4bd273d090 R08: 000000000000000c R09: 0000000000000000
[  297.095745][T16412] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  297.095756][T16412] R13: 00007f4bd1a16038 R14: 00007f4bd1a15fa0 R15: 00007fff2ce1b738
[  297.095781][T16412]  </TASK>
[  297.530031][T16425] binder: 16424:16425 ioctl c0306201 200000000640 returned -22
[  297.812318][T16437] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3609444367 (231004439488 ns) > initial count (212362056448 ns). Using initial count to start timer.
[  297.877932][T16444] FAULT_INJECTION: forcing a failure.
[  297.877932][T16444] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.885220][T16444] CPU: 3 UID: 0 PID: 16444 Comm: syz.8.2798 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.885246][T16444] Tainted: [L]=SOFTLOCKUP
[  297.885252][T16444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  297.885267][T16444] Call Trace:
[  297.885273][T16444]  <TASK>
[  297.885280][T16444]  dump_stack_lvl+0x100/0x190
[  297.885314][T16444]  should_fail_ex.cold+0x5/0xa
[  297.885337][T16444]  _copy_from_user+0x2e/0xd0
[  297.885364][T16444]  kstrtouint_from_user+0xd6/0x1d0
[  297.885388][T16444]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  297.885411][T16444]  ? __lock_acquire+0x4a5/0x2630
[  297.885435][T16444]  ? lock_acquire+0x1b1/0x370
[  297.885457][T16444]  proc_fail_nth_write+0x83/0x220
[  297.885476][T16444]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  297.885499][T16444]  vfs_write+0x2aa/0x1070
[  297.885518][T16444]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  297.885537][T16444]  ? __pfx_vfs_write+0x10/0x10
[  297.885554][T16444]  ? __fget_files+0x215/0x3d0
[  297.885579][T16444]  ? __fget_files+0x21f/0x3d0
[  297.885605][T16444]  ksys_write+0x12a/0x250
[  297.885622][T16444]  ? __pfx_ksys_write+0x10/0x10
[  297.885642][T16444]  ? rcu_is_watching+0x12/0xc0
[  297.885668][T16444]  do_syscall_64+0x115/0x870
[  297.885719][T16444]  ? clear_bhb_loop+0x40/0x90
[  297.885739][T16444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.885756][T16444] RIP: 0033:0x7f1e35f5d68e
[  297.885771][T16444] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  297.885787][T16444] RSP: 002b:00007f1e36e8efe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  297.885804][T16444] RAX: ffffffffffffffda RBX: 00007f1e36e8f6c0 RCX: 00007f1e35f5d68e
[  297.885816][T16444] RDX: 0000000000000001 RSI: 00007f1e36e8f0a0 RDI: 0000000000000004
[  297.885826][T16444] RBP: 00007f1e36e8f090 R08: 0000000000000000 R09: 0000000000000000
[  297.885836][T16444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.885846][T16444] R13: 00007f1e36216038 R14: 00007f1e36215fa0 R15: 00007ffd50307e98
[  297.885869][T16444]  </TASK>
[  297.964446][ T5100] Bluetooth: hci2: command tx timeout
[  298.023542][ T6477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.026755][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.029667][ T1490] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.129388][ T5887] usb 5-1: new full-speed USB device number 45 using dummy_hcd
[  298.179510][  T844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.211105][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2804'.
[  298.214831][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2804'.
[  298.218241][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2804'.
[  298.223226][T16462] netlink: 276 bytes leftover after parsing attributes in process `syz.8.2806'.
[  298.224363][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2804'.
[  298.308054][ T5887] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  298.312422][ T5887] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  298.315914][ T5887] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.511730][T16487] netlink: 'syz.7.2812': attribute type 39 has an invalid length.
[  298.520153][ T5817] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.695420][T16499] device ioctl magic numbers don't match! Did you rebuild pvfs2-client-core/libpvfs2? [cmd c018937b, magic 93 != 6b]
[  298.696415][T16502] ==================================================================
[  298.702812][T16502] BUG: KASAN: slab-use-after-free in dvb_device_open+0x33f/0x3b0
[  298.705424][T16502] Read of size 8 at addr ffff88802ce68e18 by task syz.9.2818/16502
[  298.709296][T16502] 
[  298.710297][T16502] CPU: 3 UID: 0 PID: 16502 Comm: syz.9.2818 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  298.710315][T16502] Tainted: [L]=SOFTLOCKUP
[  298.710320][T16502] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  298.710329][T16502] Call Trace:
[  298.710334][T16502]  <TASK>
[  298.710339][T16502]  dump_stack_lvl+0x100/0x190
[  298.710355][T16502]  print_report+0x13d/0x4b0
[  298.710372][T16502]  ? __virt_addr_valid+0x239/0x430
[  298.710385][T16502]  ? dvb_device_open+0x33f/0x3b0
[  298.710400][T16502]  kasan_report+0xdf/0x1d0
[  298.710412][T16502]  ? dvb_device_open+0x33f/0x3b0
[  298.710427][T16502]  ? __pfx_dvb_device_open+0x10/0x10
[  298.710442][T16502]  dvb_device_open+0x33f/0x3b0
[  298.710458][T16502]  ? __pfx_dvb_device_open+0x10/0x10
[  298.710473][T16502]  chrdev_open+0x234/0x6a0
[  298.710487][T16502]  ? __pfx_chrdev_open+0x10/0x10
[  298.710500][T16502]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  298.710517][T16502]  do_dentry_open+0x6ab/0x14d0
[  298.710529][T16502]  ? __pfx_chrdev_open+0x10/0x10
[  298.710543][T16502]  vfs_open+0x82/0x3f0
[  298.710559][T16502]  path_openat+0x208c/0x31a0
[  298.710575][T16502]  ? __pfx_path_openat+0x10/0x10
[  298.710591][T16502]  do_file_open+0x20e/0x430
[  298.710605][T16502]  ? __pfx_do_file_open+0x10/0x10
[  298.710623][T16502]  ? alloc_fd+0x476/0x790
[  298.710637][T16502]  ? do_getname+0x191/0x390
[  298.710653][T16502]  do_sys_openat2+0x10d/0x1e0
[  298.710668][T16502]  ? __pfx_do_sys_openat2+0x10/0x10
[  298.710685][T16502]  __x64_sys_openat+0x12d/0x210
[  298.710701][T16502]  ? __pfx___x64_sys_openat+0x10/0x10
[  298.710718][T16502]  ? rcu_is_watching+0x12/0xc0
[  298.710735][T16502]  do_syscall_64+0x115/0x870
[  298.710756][T16502]  ? clear_bhb_loop+0x40/0x90
[  298.710770][T16502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.710781][T16502] RIP: 0033:0x7fded995d68e
[  298.710792][T16502] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  298.710807][T16502] RSP: 002b:00007fdeda83db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  298.710829][T16502] RAX: ffffffffffffffda RBX: 00007fdeda83e6c0 RCX: 00007fded995d68e
[  298.710842][T16502] RDX: 0000000000141000 RSI: 00007fdeda83dc00 RDI: ffffffffffffff9c
[  298.710857][T16502] RBP: 00007fdeda83dc00 R08: 0000000000000000 R09: 0000000000000000
[  298.710868][T16502] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  298.710881][T16502] R13: 00007fded9c16038 R14: 00007fded9c15fa0 R15: 00007fff52c614c8
[  298.710901][T16502]  </TASK>
[  298.710908][T16502] 
[  298.791374][T16502] Allocated by task 16312:
[  298.792779][T16502]  kasan_save_stack+0x30/0x50
[  298.794233][T16502]  kasan_save_track+0x14/0x30
[  298.795765][T16502]  __kasan_kmalloc+0xaa/0xb0
[  298.797196][T16502]  __kmalloc_noprof+0x301/0x850
[  298.798284][   T40] audit: type=1400 audit(1780760422.967:21523): avc:  denied  { write } for  pid=5660 comm="syz-executor" path="pipe:[6689]" dev="pipefs" ino=6689 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  298.798708][T16502]  security_inode_init_security+0x113/0x370
[  298.810468][T16502]  shmem_symlink+0x163/0xa00
[  298.812343][T16502]  vfs_symlink+0x178/0x4d0
[  298.813774][T16502]  filename_symlinkat+0x2a6/0x560
[  298.815649][T16502]  __x64_sys_symlinkat+0x9c/0xe0
[  298.817197][T16502]  do_syscall_64+0x115/0x870
[  298.818643][T16502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.820505][T16502] 
[  298.821276][T16502] Freed by task 16312:
[  298.822549][T16502]  kasan_save_stack+0x30/0x50
[  298.824043][T16502]  kasan_save_track+0x14/0x30
[  298.825544][T16502]  kasan_save_free_info+0x3b/0x70
[  298.827105][T16502]  __kasan_slab_free+0x5f/0x80
[  298.828751][T16502]  kfree+0x223/0x6c0
[  298.829964][T16502]  security_inode_init_security+0x2bf/0x370
[  298.831993][T16502]  shmem_symlink+0x163/0xa00
[  298.833576][T16502]  vfs_symlink+0x178/0x4d0
[  298.834929][T16502]  filename_symlinkat+0x2a6/0x560
[  298.836692][T16502]  __x64_sys_symlinkat+0x9c/0xe0
[  298.838338][T16502]  do_syscall_64+0x115/0x870
[  298.839761][T16502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.841721][T16502] 
[  298.842464][T16502] The buggy address belongs to the object at ffff88802ce68e00
[  298.842464][T16502]  which belongs to the cache kmalloc-256 of size 256
[  298.846694][T16502] The buggy address is located 24 bytes inside of
[  298.846694][T16502]  freed 256-byte region [ffff88802ce68e00, ffff88802ce68f00)
[  298.850883][T16502] 
[  298.851646][T16502] The buggy address belongs to the physical page:
[  298.853582][T16502] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802ce68e00 pfn:0x2ce68
[  298.856584][T16502] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  298.859103][T16502] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  298.861637][T16502] page_type: f5(slab)
[  298.862860][T16502] raw: 00fff00000000240 ffff88801b842b40 ffffea0001433f90 ffffea000165c310
[  298.865436][T16502] raw: ffff88802ce68e00 000000080010000f 00000000f5000000 0000000000000000
[  298.868022][T16502] head: 00fff00000000240 ffff88801b842b40 ffffea0001433f90 ffffea000165c310
[  298.870614][T16502] head: ffff88802ce68e00 000000080010000f 00000000f5000000 0000000000000000
[  298.873233][T16502] head: 00fff00000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  298.875813][T16502] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  298.878319][T16502] page dumped because: kasan: bad access detected
[  298.880243][T16502] page_owner tracks the page as allocated
[  298.881965][T16502] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 16050818149, free_ts 0
[  298.887915][T16502]  post_alloc_hook+0xfd/0x120
[  298.889347][T16502]  get_page_from_freelist+0x11a6/0x3410
[  298.891017][T16502]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  298.892872][T16502]  new_slab+0xa6/0x6c0
[  298.894120][T16502]  refill_objects+0x277/0x420
[  298.895565][T16502]  __pcs_replace_empty_main+0x375/0x650
[  298.897209][T16502]  __kmalloc_noprof+0x688/0x850
[  298.898687][T16502]  usb_hcd_submit_urb+0x601/0x2150
[  298.900245][T16502]  usb_submit_urb+0x8aa/0x1910
[  298.901693][T16502]  usb_start_wait_urb+0x10e/0x580
[  298.903220][T16502]  usb_control_msg+0x328/0x4b0
[  298.904701][T16502]  usb_get_string+0xab/0x1a0
[  298.906119][T16502]  usb_string_sub+0x103/0x3b0
[  298.907557][T16502]  usb_string+0x2ff/0x570
[  298.908874][T16502]  usb_cache_string+0x7c/0x100
[  298.910330][T16502]  usb_new_device+0x1d1/0x7d0
[  298.911763][T16502] page_owner free stack trace missing
[  298.913396][T16502] 
[  298.914143][T16502] Memory state around the buggy address:
[  298.915873][T16502]  ffff88802ce68d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  298.918320][T16502]  ffff88802ce68d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  298.920734][T16502] >ffff88802ce68e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  298.923126][T16502]                             ^
[  298.924604][T16502]  ffff88802ce68e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  298.926995][T16502]  ffff88802ce68f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  298.929430][T16502] ==================================================================
[  298.939956][T16502] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  298.943043][T16502] CPU: 2 UID: 0 PID: 16502 Comm: syz.9.2818 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  298.947627][T16502] Tainted: [L]=SOFTLOCKUP
[  298.949483][T16502] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  298.953734][T16502] Call Trace:
[  298.955184][T16502]  <TASK>
[  298.956476][T16502]  dump_stack_lvl+0x100/0x190
[  298.958498][T16502]  vpanic+0x552/0x970
[  298.960470][T16502]  ? __pfx_vpanic+0x10/0x10
[  298.962408][T16502]  ? mark_held_locks+0x40/0x70
[  298.964486][T16502]  ? dvb_device_open+0x33f/0x3b0
[  298.966630][T16502]  panic+0xd1/0xe0
[  298.968283][T16502]  ? __pfx_panic+0x10/0x10
[  298.970207][T16502]  ? dvb_device_open+0x33f/0x3b0
[  298.972341][T16502]  ? preempt_schedule_common+0x42/0xc0
[  298.974725][T16502]  check_panic_on_warn.cold+0x19/0x34
[  298.977017][T16502]  end_report.part.0+0x3a/0x90
[  298.979084][T16502]  kasan_report.cold+0xe/0x18
[  298.981119][T16502]  ? dvb_device_open+0x33f/0x3b0
[  298.983242][T16502]  ? __pfx_dvb_device_open+0x10/0x10
[  298.985513][T16502]  dvb_device_open+0x33f/0x3b0
[  298.987581][T16502]  ? __pfx_dvb_device_open+0x10/0x10
[  298.989836][T16502]  chrdev_open+0x234/0x6a0
[  298.991775][T16502]  ? __pfx_chrdev_open+0x10/0x10
[  298.993897][T16502]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  298.996515][T16502]  do_dentry_open+0x6ab/0x14d0
[  298.998518][T16502]  ? __pfx_chrdev_open+0x10/0x10
[  299.000621][T16502]  vfs_open+0x82/0x3f0
[  299.002328][T16502]  path_openat+0x208c/0x31a0
[  299.004252][T16502]  ? __pfx_path_openat+0x10/0x10
[  299.006335][T16502]  do_file_open+0x20e/0x430
[  299.008231][T16502]  ? __pfx_do_file_open+0x10/0x10
[  299.010335][T16502]  ? alloc_fd+0x476/0x790
[  299.012067][T16502]  ? do_getname+0x191/0x390
[  299.013910][T16502]  do_sys_openat2+0x10d/0x1e0
[  299.015847][T16502]  ? __pfx_do_sys_openat2+0x10/0x10
[  299.017993][T16502]  __x64_sys_openat+0x12d/0x210
[  299.020058][T16502]  ? __pfx___x64_sys_openat+0x10/0x10
[  299.022309][T16502]  ? rcu_is_watching+0x12/0xc0
[  299.024377][T16502]  do_syscall_64+0x115/0x870
[  299.026395][T16502]  ? clear_bhb_loop+0x40/0x90
[  299.028450][T16502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.030965][T16502] RIP: 0033:0x7fded995d68e
[  299.032943][T16502] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  299.040841][T16502] RSP: 002b:00007fdeda83db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  299.044360][T16502] RAX: ffffffffffffffda RBX: 00007fdeda83e6c0 RCX: 00007fded995d68e
[  299.047720][T16502] RDX: 0000000000141000 RSI: 00007fdeda83dc00 RDI: ffffffffffffff9c
[  299.051067][T16502] RBP: 00007fdeda83dc00 R08: 0000000000000000 R09: 0000000000000000
[  299.054387][T16502] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  299.057738][T16502] R13: 00007fded9c16038 R14: 00007fded9c15fa0 R15: 00007fff52c614c8
[  299.061081][T16502]  </TASK>
[  299.063127][T16502] Kernel Offset: disabled
[  299.064983][T16502] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:01:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88801c7f4a80 RCX=ffffc9000386f4fc RDX=0000000000000000
RSI=ffffffff82764504 RDI=ffff88801c7f4f44 RBP=ffffc9000386f5f0 RSP=ffffc9000386f528
R8 =0000000000000001 R9 =0000000000000007 R10=0000000000000200 R11=0000000000017644
R12=ffffffff81f2d470 R13=ffffc9000386f5a8 R14=0000000000000000 R15=ffff88801c7f4a80
RIP=ffffffff81ecd006 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f2c7564c780 ffffffff 00c00000
GS =0000 ffff8880d6383000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f1e36e6dff8 CR3=000000003b397000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefeffe0 Opmask01=0000000000000007 Opmask02=0000000001000037 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560ccb5c46e0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2c75820b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0000ffffff00 ff00ff00ff00ff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff0000ff00000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e0000000df 000000de000000dd
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030303030303031 31323000306d6973 003700303d73656d 616e66692e74656e
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000d0d0d0d0d0d0c 0c0f0d000d50544e 000a000d004e5850 5c535b5413495853
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a666465663a6666 63393a663763363a 3a30386566203a36 7367616c66726464
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 80410004803e0004 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000e002400000001 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003e800002710 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 61610a2020642062 6d610a2034312065 0a002061640a6363 6461205f20206562
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbff52532232d20
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000010 RCX=ffffffff85031f8a RDX=0000000000000010
RSI=0000000000000040 RDI=ffff88802d4aa540 RBP=ffffc900034df2f8 RSP=ffffc900034df168
R8 =0000000000000001 R9 =0000000000000040 R10=0000000000000010 R11=0000000000000000
R12=0000000000000015 R13=ffffc900034df2d8 R14=0000000000000010 R15=0000000000000002
RIP=ffffffff82089060 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbda8d42300 ffffffff 00c00000
GS =0000 ffff8880d6483000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000564fdf73a000 CR3=000000003598c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000001000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000b09 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff0d9b40b9061f00 1800000ec101ca08 0480031e000003f2 0000000e00000001
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ed0800030010000f ffffffffffff0400 100001ca10000480
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040108000c016bcc 0a0012001600040c 324a00103afc02c9 86ba5890507f5459
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 39ff0cecb6890c46 4ade2f9349452191 c2266cafca8d640c 366545090446a4d9
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68a185a6278838c8 fa00000018000500 43040a100605fe05 0204be07020d11ff
ZMM24=4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae 4990dcae4990dcae
ZMM25=77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03 77e9be0377e9be03
ZMM26=d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6 d1be22c6d1be22c6
ZMM27=1297941212979412 1297941212979412 1297941212979412 1297941212979412 1297941212979412 1297941212979412 1297941212979412 1297941212979412
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=a7120000a7120000 a7120000a7120000 a7120000a7120000 a7120000a7120000 a7120000a7120000 a7120000a7120000 a7120000a7120000 a7120000a7120000
info registers vcpu 2

CPU#2
RAX=00000000001b246d RBX=ffff88801eaaca80 RCX=ffffffff8b895285 RDX=0000000000000000
RSI=ffffffff8df0f560 RDI=ffffffff8c1c4480 RBP=0000000000000000 RSP=ffffc90000187df0
R8 =0000000000000001 R9 =ffffed100d4c67b5 R10=ffff88806a633dab R11=0000000000000000
R12=0000000000000002 R13=ffffed1003d55950 R14=0000000000000002 R15=ffffffff90d70d50
RIP=ffffffff8b8938df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6583000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fded9a4f156 CR3=000000004b717000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd254d560
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff2ce1bc26
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff2ce1bc26 00007fff2ce1bc2c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd1833352
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd1833392
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd18334f6
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd1833384
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd19ed600 00007f4bd19ed5e0 00007f4bd19ed5e8 00007f4bd19ed618
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4bd19ed5f8 00007f4bd19ed5c8 00007f4bd19ed600 00007f4bd19ed5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d782f5cbe83d6c56 86c787f3eb12ffcd 128fd7c8f2e4c575 975a7f42726c8ee9
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 810accca046cf9b3 cc591c6274aaed94 b00739e1001d151b 94de97812f5deeb3
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a36ab990c4a7d1bf 53c393b212bc658a 76ed692e0ad33b01 f1cf926de7067280
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b71632dbd3c50793 4700d1685b848843 3fe69c9aef708485 a5ce1586677f8757
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857e6665 RDI=ffffffff9b460ca0 RBP=ffffffff9b460c60 RSP=ffffc9000363f2f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3230383838666666
R12=0000000000000000 R13=0000000000000030 R14=0000000000000010 R15=ffffffff857e6600
RIP=ffffffff857e668f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fdeda83e6c0 ffffffff 00c00000
GS =0000 ffff8880d6683000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fded9986480 CR3=000000002b59b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000f8000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff52c619b6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff52c619b6 00007fff52c619bc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fded9a33352
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fded9a33392
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fded9a334f6
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fded9a33384
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000030646e 65746e6f72662f30 726574706164612f 6276642f7665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000013474d 46574d4c51450c13 514657534247420c 4155470c5546470c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fded9bed5f8 00007fded9bed5c8 00007fded9bed600 00007fded9bed5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000070
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000